3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide
2
FIREWALL CONFIGURATION
Firewall Configuration To make the Switch 8800 Family routing switch and firewall module work
together, you need to configure the firewall on the switch by:
■ “Configuring the Interface Aggregation”
■ “Creating the Firewall Module”
■ “Specifying the Layer 3 Interface Connecting the Switch and the Firewall”
■ “Specifying the VLAN Protected by the Firewall”
■ “Mapping the Firewall to the Firewall Module”
■ “Logging into the Firewall module”
■ “Configuring Default Login User Function” (optional)
Configuring the
Interface Aggregation
Two internal GigabitEthernet interfaces connect the Firewall module to the switch.
You can aggregate these two interfaces into a logical interface to provide broader
interface bandwidth.
Perform the following configuration in switch system view.
By default, the interface is not aggregated. Only one GigabitEthernet interface can
be used.
c
CAUTION: When you use the secblade aggregation slot command to configure
aggregation of the Firewall module interface, the module will occupy the
resources occupied by other aggregation groups if aggregation resources are not
sufficient.
Creating the Firewall
Module
To make the Firewall module and Switch 8800 Family switch work together, first
create a Firewall to enter SecBlade view.
Perform the following configuration in switch system view.
Tab le 2 Configure the Firewall module interface aggregation
Operation Command
Configure aggregation of
two GE interfaces
secblade aggregation slot slot-number
Cancel the configuration undo secblade aggregation slot slot-number
Tab le 3 Create the Firewall
Operation Command
Create the SecBlade secblade sec-mod-name