beautypg.com

Displaying the configuration – H3C Technologies H3C SecBlade IPS Cards User Manual

Page 55

background image

48

Configure the internal interface and the OAA client and test its connectivity to the switch.

Create security zones and add the interfaces of the switch to corresponding security zones.

Create a segment and add internal and external zones to the segment.

Table 2 Follow these steps to configure the SecBlade IPS card:

To do…

Use the command…

Remarks

Enter system view

system-view

Enter management interface
view

interface meth interface-number

Optional

Configure an IP address for
the management interface

ip address ip-address mask

Optional
By default, the IP address of the

management interface meth 0/2 is
192.168.1.1.

Enable the management
interface

undo shutdown

Required
Disabled by default.

Use the IP address of the
management interface to log

in to the web interface of the

SecBlade IPS card

Required
The default username and
password are both admin.

Configure the
OAA client

and internal
interface

Select System Management > Device
Management > OAA Configuration. Input

parameters in OAA Client Configuration
and Internal Interface Configuration to

complete OAA configuration.

Required

Configure
OAA

Test the
connectivity

Click the Test Connectivity button to test
the connectivity between the OAA client

and the server.

Required

Create security zones

Select System Management > Network
Management > Security Zone. Use the

Add button to create security zones and

add the interfaces of the S12500 switch
to the security zone.

Required
The interface list of the switch is
sent to the OAA board (the

SecBlade IPS card in this case),

and you can add interfaces to
security zones.

Create a segment

Select System Management > Network

Management > Segment Configuration.
Click Add Segment. Select a segment

number, the internal zone, and the

external zone.

Required
You need to specify the internal

interface when creating the
segment. The internal interface

connects to the switch.

Displaying the configuration

Use the following command in any view of the SecBlade IPS card to view forwarding information of the
internal 10GE interface:

To do…

Use the command…

Display the running status and forwarding
information of the 10GE interface

display interface [ interface-name ]

See also other documents in the category H3C Technologies Safety: