cjh 华为USG防火墙:带外管理(有两个路由器表)(ip binding vpn-instance xxx)
华为USG防火墙:带外管理(有两个路由器表)(ip binding vpn-instance xxx)
(1)拓扑图
(2)华为USG默认G0/0/0就是带外管理接口
ip vpn-instance default
ipv4-family
interface GigabitEthernet0/0/0
undo shutdown
ip binding vpn-instance default
ip address 10.12.3.3 255.255.255.0
gateway 10.12.12.253
service-manage http permit
service-manage https permit
service-manage ping permit
(3)把g1/0/1也配置成带宽管理接口
ip vpn-instance manage
ipv4-family
interface GigabitEthernet1/0/1
undo shutdown
ip binding vpn-instance manage
ip address 192.168.3.100 255.255.255.0
gateway 192.168.3.254
[USG6000V2]ping -vpn-instance manage 192.168.3.254
PING 192.168.3.254: 56 data bytes, press CTRL_C to break
Reply from 192.168.3.254: bytes=56 Sequence=1 ttl=255 time=9 ms
Reply from 192.168.3.254: bytes=56 Sequence=2 ttl=255 time=2 ms
Reply from 192.168.3.254: bytes=56 Sequence=3 ttl=255 time=3 ms
Reply from 192.168.3.254: bytes=56 Sequence=4 ttl=255 time=2 ms
Reply from 192.168.3.254: bytes=56 Sequence=5 ttl=255 time=3 ms
--- 192.168.3.254 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 2/3/9 ms
[USG6000V2]
如果g0/0/0删除ip binding vpn-instance,也会从“带外管理接口”变成普通接口。
interface GigabitEthernet0/0/0
undo shutdown
ip binding vpn-instance default
ip address 10.12.3.3 255.255.255.0
gateway 10.12.12.253
service-manage http permit
service-manage https permit
service-manage ping permit
#
return
[USG6000V2]interface GigabitEthernet 0/0/0
[USG6000V2-GigabitEthernet0/0/0]
[USG6000V2-GigabitEthernet0/0/0]undo ip binding vpn-instance default
Info: All IPv4 related configurations on this interface are removed!
Info: All IPv6 related configurations on this interface are removed!
2、本资源基本为原创,部分来源其他付费资源平台或互联网收集,如有侵权请联系及时处理。
3、本站大部分文章的截图来源实验测试环境,请不要在生产环境中随意模仿,以免带来灾难性后果。
转载请保留出处: www.zh-cjh.com珠海陈坚浩博客 » 华为USG防火墙:带外管理(有两个路由器表)(ip binding vpn-instance xxx)
作者: cjh
| 手机扫一扫,手机上查看此文章: |
一切源于价值!
其他 模板文件不存在: ./template/plugins/comment/pc/index.htm