3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide
14 CHAPTER 2: FIREWALL CONFIGURATION
By default, the Firewall is not created.
Specifying the Layer 3
Interface Connecting the
Switch and the Firewall
To enable the Firewall and Switch 8800 Family switch to communicate at Layer 3,
specify the Layer 3 interface connecting the switch and the firewall.
Perform the following configuration in SecBlade view of the switch.
By default, the Layer 3 interface connecting the switch and Firewall is not
configured.
Specifying the VLAN
Protected by the
Firewall
To make the Firewall protect the data stream of the specific VLAN, you need to
specify the protected VLAN.
Perform the following configuration in SecBlade view of the switch.
By default, no VLAN is protected.
Mapping the Firewall to
the Firewall Module
After implementing the above configuration on the Firewall, you need to map it to
the Firewall module to apply the configuration. Perform the following
configuration in SecBlade view of the switch.
By default, the Firewall is not mapped to the Firewall module.
Logging into the
Firewall module
You can directly log into the Firewall module through the Switch 8800 Family
switch to configure and manage the card. Perform the following configuration in
switch user view.
Remove the SecBlade undo secblade sec-mod-name
Table 3 Create the Firewall
Operation Command
Tabl e 4 Specify the Layer 3 interface connecting the switch and the SecBlade
Command Command
Specify the Layer 3 interface connecting
the switch and the Firewall
secblade-interface vlan-interface
Cancel the configuration
undo secblade-interface vlan-interface
interface-number
Tabl e 5 Specify the VLAN protected by the Firewall
Operation Command
Specify the protected VLAN security-vlan vlan-range
Cancel the VLAN protection undo security-vlan vlan-range
Tabl e 6 Map the firewall to the Firewall module
Operation Command
Map the firewall to the Firewall
module
map to slot slot-number
Cancel the configuration undo map to slot slot-number