Displaying and maintaining acsei server and client, Network requirements, Configuration procedure – H3C Technologies H3C SecPath F1000-E User Manual

53

Displaying and maintaining ACSEI server and client

Task Command

Remarks

On the network device:

Display ACSEI client summary.

display acsei client summary
[ client-id ]

Available in any view

Display ACSEI client information.

display acsei client info
[ client-id ]

Available in any view

On the firewall module:

Display ACSEI client information.

display acsei-client information Available in any view

Display current ACSEI client state.

display acsei-client status

Available in any view

Example of monitoring and managing the firewall
module from the network device

Network requirements

A firewall module is installed in slot 3 of the network device to detect the traffic passing the network

device. The internal interface Ten-GigabitEthernet 3/0/1 on the network device is connected to the

internal interface Ten-GigabitEthernet0/0 on the firewall module.
The network device redirects received traffic to the firewall module. The firewall module processes the

traffic based on the configured security policy, and redirects permitted traffic to the network device for

forwarding.
Configure the network device and firewall module so that you can log in to and restart the firewall
module from the network device. Configure the clock synchronization timer as 10 minutes, and configure

the monitoring timer as 10 seconds.

Figure 34 Network diagram

Configuration procedure

This example uses a switch. The configuration on a router is the same.

1.

Log in to the firewall module from the network device:
# Configure the AUX user interface of the firewall module.

system-view
[FW card] user-interface aux 0
[FW card-ui-aux0] authentication-mode none
[FW card-ui-aux0] user privilege level 3