S E C U R I T Y Z O N E S A N D I N T E R F A C E S
Configuring Interface Modes
3-20
Security Appliance User Guide
Version 3R2
3
set interface eth0 transparent
set interface eth1 zone untrust
set interface br0.5 ip 10.2.1.1/24
set interface br0.5 zone ManageNet
set interface br0.5 manage ssh/ping
set route 0.0.0.0/0 interface br0 gateway
unset transparent bypass-vlan-policy
set zone name ManageNet
set zone name Engineering
set zone name Accounting
set zone name Finance
set zone name Lab
set zone name Sales
set address Finance webserver 192.168.200.10/32
set address Accounting SQLServer 192.168.100.100/32
set transparent vlan Engineering tag 100 zone
Engineering
set transparent vlan Accounting tag 200 zone Accounting
set transparent vlan Finance tag 300 zone Finance
set transparent vlan Lab tag 400 zone Lab
set transparent vlan Sales tag 500 zone Sales
set transparent vlan ManageNet tag 5 zone ManageNet
set policy from Engineering to Lab any any any permit
set policy from Lab to Engineering any any ssh permit
set policy from Sale to Finance any webserver http
permit
set policy from Sales to Accounting any SQL sql permit
