</p> //开启firewall,并将默认设置为deny" w/ b! g* \" }
[Router]fire enable* H( Z* H: i, U% w# ], _% w; G3 P
[Router]fire default deny, [' |! l4 Z3 I
//允许192.168.1.1访问192.168.1.3) n# C# W5 m' S. H
//firewall策略可根据需要再进行添加' U5 e% C- ` `2 p. V5 G
[Router]acl 101) }0 |7 A) z: k4 I' ^7 x
[Router-acl-101]rule permit ip source 192.168.1.1 255.255.255.0 destination 192.168.1.3 255.255.255.0+ X; i( r9 x$ {' L8 E
[Router-acl-101]quit
! c' t, Y t, }' G/ f2 f //启用101规则
( ^, A' ~3 }& o! H [Router-Ethernet0]fire pa 101
! [' }3 S1 {2 A8 t# M [Router-Ethernet0]quit
( e: w/ U! @$ W' i4 R2 Q [Router-Ethernet1]fire pa 101, y0 b: g& r0 f$ k* v5 i7 x+ q
[Router-Ethernet1]quit |