Nortel 4134 Guia Do Utilizador
Configuring a simple PAT policy
233
8
To add an interface to the trusted zone, enter:
interface ethernet0/1
exit
9
To create the trusted DMZ zone, enter:
firewall dmz
10
To add an interface to the DMZ zone, enter:
interface ethernet0/2
11
To define a policy for allowing HTTP traffic into a DMZ web server,
enter:
enter:
policy 100 in service http address any any 47.1.1.1 32
—End—
Configuring a simple PAT policy
The following figure shows a simple PAT policy.
Figure 16
Simple PAT policy
Simple PAT policy
To configure the simple PAT policy shown, perform the following steps.
Procedure steps
Step
Action
1
To enter the configuration mode, enter:
configure terminal
2
To specify crypto configuration for IPsec and IKE, enter:
crypto
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.