beautypg.com

Configuration procedure – H3C Technologies H3C SecPath F5020 User Manual

Page 80

background image

71

Configuration procedure

1.

Configure security engine group test:
# Create security engine group test.

system-view

[Sysname] blade-controller-team test

# Add the security engine on CPU 1 in slot 3 to the security engine group.

[Sysname-blade-controller-team-2-test] location blade-controller slot 3 cpu 1

This operation will also reboot the blade controller. Continue? [Y/N]:y

[Sysname-blade-controller-team-2-test] quit

2.

Configure context cnt1:
# Create context cnt1 and configure a description for it.

[Sysname] context cnt1

[Sysname-context-2-cnt1] description context-1

# Assign context cnt1 to security engine group test. (The ID of the group is 2.)

[Sysname-context-2-cnt1] location blade-controller-team 2

# Configure the context to use up to 60% of the total disk spaces on the security engine.

[Sysname-context-2-cnt1] limit-resource disk slot 3 cpu 1 ratio 60

# Configure the context to use up to 60% of the total memory spaces on the security engine.

[Sysname-context-2-cnt1] limit-resource memory slot 3 cpu 1 ratio 60

# Set the CPU weight to 8 for the context.

[Sysname-context-2-cnt1] limit-resource cpu weight 8

# Set the throughput threshold to 100000 kbps for the context.

[Sysname-context-2-cnt1] capability throughput kbps 100000

# Set the maximum number of object policy rules to 1000 for the context.

[Sysname-context-2-cnt1] capability object-policy rule maximum 1000

# Start the context.

[Sysname-context-2-cnt1] context start

It will take some time to start the context...

Context started successfully.

# Assign interfaces GigabitEthernet 1/0/1 and GigabitEthernet 1/0/11 to the context.

[Sysname-context-2-cnt1] allocate interface gigabitethernet 1/0/1 gigabitethernet

1/0/11

[Sysname-context-2-cnt1] quit

3.

Configure context cnt2:
# Create context cnt2 and configure a description for it.

[Sysname] context cnt2

[Sysname-context-3-cnt2] description context-2

# Assign context cnt2 to security engine group test. (The ID of the group is 2.)

[Sysname-context-3-cnt2] location blade-controller-team 2

# Start the context.

[Sysname-context-3-cnt2] context start

It will take some time to start the context...

Context started successfully.

# Assign interfaces GigabitEthernet 1/0/2 and GigabitEthernet 1/0/12 to the context.

This manual is related to the following products:
See also other documents in the category H3C Technologies Safety: