网络拓扑:
路由模式:
第一步、配置防火墙的接口地址
编辑外网接口:
配置内网口(原理同上)(interface mode:nat)
第二步、配置防火墙的路由
第三步、配置防火墙安全策略
Cisco交换机:
enable
conf t
vlan 30
int vlan 30
ip addr 10.10.30.1 255.255.255.0
no shutdown
end
conf t
int Gig...1/0/3
switch mode access
switch access vlan 30
end
conf t
vlan 31
int vlan 31
ip addr 10.10.31.1 255.255.255.0
no shutdown
end
conf t
int Gig...1/0/4
switch mode access
switch access vlan 31
end
vlan 32
int vlan 32
ip addr 10.10.32.1 255.255.255.0
no shutdown
end
conf t
int Gig...1/0/5
switch mode access
switch access vlan 32
end
ip routing
ip route 0.0.0.0 0.0.0.0 10.10.30.254