beautypg.com

Configuration procedure – H3C Technologies H3C SecPath F1000-E User Manual

Page 467

background image

4

192.168.1.0/24, and the IP address of the FTP server is 192.168.1.2. You need to configure NAT and

ALG to meet the following requirements:

The host in the outside network can access the FTP server in the inside network.

The company has four public network addresses: 5.5.5.1, 5.5.5.9, 5.5.5.10, and 5.5.5.11, and the

FTP server uses the public network address of 5.5.5.10 to provide services to the outside.

Figure 3 Network diagram for configuring FTP ALG

Configuration procedure

Step1

Configure ALG.

# Configure FTP ALG. (By default, the FTP ALG function is enabled, and thus this step can be omitted.)

Select Firewall > ALG from the navigation tree. Add the FTP protocol to the selected protocol list

as shown in

Figure 4

.

Figure 4 Configure FTP ALG

Select ftp in the Optional Application Protocols list and click the << button to add it to the
Selected Application Protocols list.

Click OK.

Step2

Configure an ACL.

# Create a basic ACL.

Select Firewall > ACL from the navigation tree and then on the page that appears, click Add.

Create ACL 2001 as shown in

Figure 5

.

This manual is related to the following products:
See also other documents in the category H3C Technologies Safety: