HP VPN Firewall Appliances Access Control Configuration Guide
96
Ste
p
Command
Remarks
2. Enter VD system view.
switchto vd vd-name Required for a VD.
3. Enter interzone instance
view.
interzone source source-zone-name
destination destination-zone-name
N/A
4. Move an ACL in the
interzone policy.
move rule acl acl-number before
insert-acl-number
Optional.
Displaying and maintaining interzone policies
Task Command
Remarks
Display interzone
policy configuration.
display interzone-policy [ vd vd-name ] [ source
sour-zone-name destination dest-zone-name ] [ |
{ begin | exclude | include } regular-expression ]
Available in any view.
Display interzone
policy acceleration
status.
display interzone-policy accelerate [ vd vd-name ]
[ source sour-zone-name destination
dest-zone-name ] [ | { begin | exclude | include }
regular-expression ]
Available in any view.
Clear the interzone
policy statistics.
reset interzone-policy counter [ vd vd-name ] { all |
source sour-zone-name destination
dest-zone-name }
Available in any view.
Interzone policy rule configuration example
Network requirements
A company interconnects its department through Firewall.
Configure interzone policy rules to permit the president office to access the Web service of the financial
database server through HTTP at any time, permit the financial department to access the Web service of
the financial database server through HTTP only during working hours (from 8:00 to 18:00) on working
days, and deny any other department to access the Web service of the financial database server through
HTTP at any time.