beautypg.com

Configuration procedure – H3C Technologies H3C SecBlade IPS Cards User Manual

Page 72

background image

65

GigabitEthernet 1/0/2 to connect to the internal network, uses GigabitEthernet 1/0/3 to connect to the

external network, and uses its internal interface Ten-GigabitEthernet 11/0/1 to connect to the SecBlade

IPS card’s internal interface Ten-GigabitEthernet 0/0. Traffic received on the router’s GigabitEthernet
1/0/1, GigabitEthernet 1/0/2, and GigabitEthernet 1/0/3 must be sent to the SecBlade IPS card for

inspection.

Figure 45 SR8800 router and the IM-IPS card

Configuration procedure

1.

Configure the router

# Configure the H3C new MIB style. With this style, the sysOID and the private MIB are both under H3C

enterprise ID 25506. You need to reboot the router to validate the configuration (you can reboot the

router after completing all configurations).

system-view

[Sysname] mib-style new

# Configure SNMP parameters.

[Sysname] snmp-agent

[Sysname] snmp-agent sys-info version all

[Sysname] snmp-agent group v3 v3group_no read-view iso write-view iso

[Sysname] snmp-agent mib-view included iso iso

[Sysname] snmp-agent usm-user v3 v3user_no v3group_no

# Enable the ACFP server and the ACSEI server.

[Sysname] acfp server enable

[Sysname] acsei server enable

# Configure the internal interface.

Create VLAN 100 and configure an IP address for the VLAN interface. Make sure the VLAN does

not conflict with any existing VLAN.

[Sysname] vlan 100

[Sysname-vlan100] quit

[Sysname] interface Vlan-interface100

See also other documents in the category H3C Technologies Safety: