Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Attack Protection Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
75
Figure 79 Statistic information
Content filtering configuration example
Network requirements
As shown in Figure 80, hosts in LAN segment 192.168.1.0/24 access the Internet through Firewall.
Security zones Trust and Untrust are configured on Firewall for the LAN and the Internet respectively.
Perform the following configurations on Firewall:
Enable HTTP body filtering to block HTTP responses that carry keyword abc.
Enable HTTP Java applet blocking to block Java applet requests to all websites except the one with
IP address 5.5.5.5.
Enable SMTP attachment name filtering to block all emails that carry .exe attachments.
Enable FTP upload filename filtering to prevent users from uploading files that carry abc in the
filenames.
Enable Telnet command word filtering to prevent users from executing commands that carry the
command keyword reboot.