H3C MSR 20/30/50 Series Routers User Manual
Chapter 2 Feature Description
Operation and command
Feature
Feature description
manual
Firewall(A
CL ASPF
PAM)
Firewall(ACL ASPF PAM)
Configuration
Firewall(ACL ASPF PAM)
Commands
Firewall can prevent unauthorized or
unauthenticated users on the Internet
from accessing a protected network
while allowing the users on the internal
network to access web sites on the
Internet and transceive E-mails.
z
Configuring a Packet Filter Firewall
z
Configuring an ASPF
MAC
Authentica
tion
MAC Authentication
Configuration
MAC Authentication
Commands
MAC address authentication controls
user network access based on port and
MAC address.
z
MAC authentication basic
configuration
z
MAC authentication advanced
configuration
NAT
NAT Configuration
NAT Commands
Network Address Translation (NAT) is
to translate the IP address in IP data
packet header into another IP address,
which is mainly used to implement
private network accessing external
network in practice.
z
Configuring EASY IP
z
Configuring static NAT
z
Configuring Many-to-many NAT
z
Configuring many-to-one NAPT
z
Configuring Internal Server
z
Configuring NAT Log
z
Configuring Connection Limit
PKI
PKI Configuration
PKI Commands
Public key infrastructure (PKI) is a
system which uses public key
technology and digital certificate to
protect system security and
authenticate digital certificate users.
z
Generating an RSA pair for PKI
z
Configuring PKI certificate
registration
z
Submitting a PKI certificate request
z
Configuring PKI certificate validation
z
Configuring access control policy of
certificate attribute
PORTAL
Portal Configuration
Portal Commands
Portal authentication
z
Portal authentication basic
configuration
z
Portal authentication advanced
configuration
2-16