Network requirements – H3C Technologies H3C SecBlade FW Cards User Manual
Page 7
6
To do…
Use the command…
Remarks
Create another subinterface and
enter subinterface view
interface ten-gigabitethernet
interface-number.subnumber
Required
The subnumber must be the ID of
the other VLAN created on the
switch.
Configure the operating mode of
the subinterface as Layer 2
port link-mode bridge
Required
The operating mode must be
consistent with that of the
ten-GigabitEthernet interface.
Configure the link type of the
subinterface as access
port link-type access
Optional
By default, the link type of a
subinterface is access.
Assign the subinterface to the
VLAN of the firewall card
port access vlan vlan-id
Required
Add the subinterface to a security
zone
Enter the Web page and select
Device Management > Zone.. On
the modify zone page, add the
subinterface to a zone.
Required
This security zone is for outgoing
packets.
Displaying and maintaining inter-VLAN Layer 2 forwarding
To do…
Use the command…
Remarks
Display brief interface
information
display brief interface
[
interface-type
[ interface-number | interface-number.subnumber ] ]
[ | { begin | include | exclude } text ]
Available in any view
Display
interface/subinterface state
and related information
display interface [ interface-type [interface-number |
interface-number.subnumber ] ]
Available in any view
Clear the
interface/subinterface
statistics
reset counters interface [ interface-type
[ interface-number | interface-number.subnumber ] ]
Available in user view
Display VLAN information
display vlan [ vlan-id1 [ to vlan-id2 ] | all | dynamic
|
interface
interface-type
interface-number.subnumber | reserved | static ]
Available in any view
Forward-type inline Layer 2 forwarding
configuration example
Network requirements
Configure forward-type inline Layer 2 forwarding between GigabitEthernet 0/1 and GigabitEthernet
0/2. Then packets received on GigabitEthernet 0/1 can be forwarded through GigabitEthernet 0/2
directly, and vice versa.