H3C AR18的常见防病毒访问控制列表
[align=left][align=left][size=14pt] AR18[/size][font=宋体][size=14pt]的常见防病毒访问控制列表[/size][/font][/align][/align][align=left][align=left][size=12pt]acl number [/size][size=12pt]3333[/size][/align][/align][align=left][align=left][size=12pt] rule 0 deny udp destination-port eq tftp[/size][/align][/align][align=left][align=left][size=12pt] rule 1 deny tcp destination-port eq 135[/size][/align][/align][align=left][align=left][size=12pt] rule 2 deny udp destination-port eq 135[/size][/align][/align][align=left][align=left][size=12pt] rule 3 deny udp destination-port eq netbios-ns[/size][/align][/align][align=left][align=left][size=12pt] rule 4 deny udp destination-port eq netbios-dgm[/size][/align][/align][align=left][align=left][size=12pt] rule 5 deny tcp destination-port eq 139[/size][/align][/align][align=left][align=left][size=12pt] rule 6 deny udp destination-port eq netbios-ssn[/size][/align][/align][align=left][align=left][size=12pt] rule 7 deny tcp destination-port eq 445[/size][/align][/align][align=left][align=left][size=12pt] rule 8 deny udp destination-port eq 445[/size][/align][/align][align=left][align=left][size=12pt] rule 9 deny tcp destination-port eq 539[/size][/align][/align][align=left][align=left][size=12pt] rule 10 deny udp destination-port eq 539[/size][/align][/align][align=left][align=left][size=12pt] rule 11 deny udp destination-port eq 593[/size][/align][/align][align=left][align=left][size=12pt] rule 12 deny tcp destination-port eq 593[/size][/align][/align][align=left][align=left][size=12pt] rule 13 deny udp destination-port eq 1434[/size][/align][/align][align=left][align=left][size=12pt] rule 14 deny udp destination-port eq 1433[/size][/align][/align][align=left][align=left][size=12pt] rule 15 deny tcp destination-port eq 4444[/size][/align][/align][align=left][align=left][size=12pt] rule 16 deny tcp destination-port eq 9996[/size][/align][/align][align=left][align=left][size=12pt] rule 17 deny tcp destination-port eq 5554[/size][/align][/align][align=left][align=left][size=12pt] rule 18 deny udp destination-port eq 9996[/size][/align][/align][align=left][align=left][size=12pt] rule 19 deny udp destination-port eq 5554[/size][/align][/align][align=left][align=left][size=12pt] rule 20 deny tcp destination-port eq 137[/size][/align][/align][align=left][align=left][size=12pt] rule 21 deny tcp destination-port eq 138[/size][/align][/align][align=left][align=left][size=12pt] rule 22 deny tcp destination-port eq 1025[/size][/align][/align][align=left][align=left][size=12pt] rule 23 deny udp destination-port eq 1025[/size][/align][/align][align=left][align=left][size=12pt] rule 24 deny tcp destination-port eq 9995[/size][/align][/align][align=left][align=left][size=12pt] rule 25 deny udp destination-port eq 9995[/size][/align][/align][align=left][align=left][size=12pt] rule 26 deny tcp destination-port eq 1068[/size][/align][/align][align=left][align=left][size=12pt] rule 27 deny udp destination-port eq 1068[/size][/align][/align][align=left][align=left][size=12pt] rule 28 deny tcp destination-port eq 1023[/size][/align][/align][align=left][align=left][size=12pt] rule 29 deny udp destination-port eq 1023[/size][/align][/align][align=left][align=left][size=12pt] rule 30 permit icmp icmp-type echo[/size][/align][/align][align=left][align=left][size=12pt] rule 31 permit icmp icmp-type echo-reply[/size][/align][/align][align=left][align=left][size=12pt] rule 32 permit icmp icmp-type ttl-exceeded[/size][/align][/align][align=left][align=left][size=12pt] rule 33 deny icmp[/size][/align][/align][align=left][align=left][font=宋体]然后进入相应的内网口和外网口,下发到[color=red]inbound[/color]方向[/font][/align][/align][align=left][align=left][font=宋体]如[/font][size=12pt]interface ethernet[/size][size=12pt] 1/0[/size][/align][/align][align=left][align=left][size=12pt]firewall packet-filter [/size][size=12pt]3333 [/size][size=12pt]inbound[/size][/align][/align] ding :loveliness: :loveliness: 好呀,再详细点就更好啦
谢谢! ddddddddd ,看不太懂
页:
[1]
