防火墙基本命令与实验（Firewall basic commands and experiments）.doc

防火墙基本命令与实验（Firewall basic commands and experiments） This article is contributed by bierhu1991 DOC documents may experience poor browsing on the WAP side. It is recommended that you first select TXT, or download the source file to the local view. 1. place the PIX to the rack, then connect the power supply to the power system and power the main computer. 2. connect the CONSOLE port to the serial port of PC, and run the HyperTerminal program to enter the PIX system from the CONSOLE port. At this point, the system prompts pixfirewall. 3. enter command: enable, enter privileged mode, at this point the system prompt for pixfirewall#. 4. input command: configure terminal, initialize the system settings. 5. configuration parameters: interface Ethernet0 Ethernet auto (auto option card system shows that the adaptive interface type) ethernet1 auto 6. configuration proscenium. Nameif outside (external network interface) Nameif inside Nameif DMZ (network interface) (regional server interface) 7. inside IP address: IP IP address inside ip_address netmask (IP address address outside ip_address) IP netmask 8. configuration interface security level Security-level 100 (inside) interface default security level is 100, Outside interface default security level is 0, DMZ the default security level is 509. to configure a default route to connect external network firewall Route outside (next hop address) 10. configuration static host mapping (which can be used to release to the network server) Static (inside, outsdie) ( outside 0 (network interface address) to host address mapping) 11. configuration static host port mapping Static (inside, outsdie) TCP HTTP 80 (outside interface address) 0 http 8012. to be designated to convert internal address: Nat 1 ip_address netmask (1 conversion address pool number 13.) specifies the external address range: Global 1 outsdie netmask (transfer tank command) 14. specifies the transition groove IP Global 1 outsdie -0 netmask telnet telnet loc