beautypg.com

Modifying an internet access audit policy, Deleting an internet access audit policy – H3C Technologies H3C Intelligent Management Center User Manual

Page 130

background image

114

Enable Audit—Configure whether Internet access audit logs are generated by the iNode

client for packets that match the ACL rule. Options are Audit and Not Audit.

Protocol—Select the name or number of the transport layer protocol.

Destination IP/Mask—Specifies the destination network IP address and mask length. The

value of 0.0.0.0 matches all IP addresses.

Destination Port—Specifies the destination port number.

c.

Click OK.

6.

Repeat step 5 to add more audit ACL rules.

7.

Adjust the priority of the ACL rules:

{

Click the Move up icon

to increase the priority of the audit ACL rule.

{

Click the Move down icon

to reduce the priority of the audit ACL rule.

The audit ACL rules displayed in the Audit ACL Rule List are in descending order of priority. The
rule with a higher priority is matched against first. After a match is found for a packet, the

remaining rules are ignored.

8.

Click OK.

Modifying an Internet access audit policy

1.

Click the User tab.

2.

From the navigation tree, select User Security Policy > Endpoint Access Control > Internet Access
Audit.
The Internet access audit policy list displays all Internet access audit policies.

3.

Click the Modify icon

for the Internet access audit policy you want to modify.

The page for modifying the Internet access audit policy appears.

4.

Modify the basic information for the Internet access audit policy.
You can modify all the parameters except Policy Name and Service Group.

5.

Modify the audit ACL rules of the Internet access audit policy:

a.

Click the Modify icon

for an audit ACL rule to modify its settings.

b.

Click the Delete icon

to delete an audit ACL rule.

c.

Click the Move up icon

to increase the priority of an audit ACL rule.

d.

Click the Move down icon

to reduce the priority of an audit ACL rule.

6.

Click OK.

Deleting an Internet access audit policy

An Internet access audit policy cannot be deleted when it is assigned to an Internet access policy. To

delete the audit policy, first remove it from the Internet access policy. For more information, see "

Adding

an Internet access policy

."

To delete an Internet access audit policy:

1.

Click the User tab.

2.

From the navigation tree, select User Security Policy > Endpoint Access Control > Internet Access
Audit.

See also other documents in the category H3C Technologies Safety: