R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101
69
Table 23 Operations you can perform on the list
Field O
p
eration
Referenced ACLs
Click an ACL to enter the ACL configuration page, where you can view, create, and
delete rules in the ACL. For information about ACL configuration, see "ACL
configuration."
Status
• shows that the interzone policy group is enabled. You can click Disable to
disable the interzone policy group.
• shows that the interzone policy group is disabled. You can click Enable to
enable the interzone policy group.
Figure 70 Interzone policy group configuration page
Table 24 Configuration items
Item Descri
p
tion
Source Zone Specify the source zone for the interzone policy group.
Dest Zone Specify the destination zone for the interzone policy group.
Selected ACLs
Select the ACLs to be referenced by the interzone policy group.
The selected ACLs are listed in the order they are selected, which is also the match order.
An ACL listed earlier has a higher priority, and is matched earlier.
IMPORTANT:
For any ACL referenced by an interzone policy group, only the five tuples (source IP
address, destination IP address, source port, destination port, and protocol type) are used.
Enable Select this box to enable interzone policy group settings.
Displaying packet statistics of an interzone policy
Select Firewall > Security Policy > Policy Matching Statistics from the navigation tree to enter the page as
shown in Figure 71.
Select the source and target zone, and then click Search. The page displays the