H3C S5800 IPSACG插卡开局指导书
更新时间:2023-10-13 03:31:01 阅读量: 综合文库 文档下载
- h3c推荐度:
- 相关推荐
H3C S5800 IPS&ACG插卡开局指导书
H3C S5800 IPS&ACG插卡开局指导书
(IPS、ACG使用B31平台软件版本)
杭州华三通信技术有限公司
Hangzhou H3C Technologies Co., Ltd.
版权所有 侵权必究 All rights reserved
杭州华三通信技术有限公司
www.h3c.com.cn
第i页
H3C S5800 IPS&ACG插卡开局指导书 目 录
1 SECBLADE安全插卡概述 ······································································································································· 2
1.1 产品简介 ·················································································································································· 2 1.2 主要特点 ·················································································································································· 3 2 SECBLADE IPS命令行登录方式 ··························································································································· 4 3 方案一:单台S5800典型配置 ································································································································· 5
3.1 三层转发方案 ·········································································································································· 5
3.1.1 组网图 ·········································································································································· 5 3.1.2 用户需求 ······································································································································ 5 3.1.3 S5800主控板相关配置 ················································································································· 5 3.1.4 IPS插卡配置 ································································································································· 6 3.2 二层转发方案 ·········································································································································· 8 4 方案二:S5800 IRF典型配置 ································································································································· 8
4.1 2台S5800 IRF+1块SECBLADE IPS插卡 ··································································································· 8
4.1.1 组网图 ·········································································································································· 8 4.1.2 用户需求 ······································································································································ 8 4.1.3 S5800相关配置 ····························································································································· 9 4.1.4 IPS插卡相关配置 ······················································································································· 10 4.2 两台S5800堆叠+IPS插卡+FW插卡 ····································································································· 12
4.2.1 组网图 ········································································································································ 12 4.2.2 用户需求 ···································································································································· 12 4.2.3 S5800相关配置 ··························································································································· 13 4.2.4 FW插卡相关配置 ······················································································································· 14 4.2.5 IPS插卡相关配置 ······················································································································· 15
5 开局常见注意事项 ··················································································································································16
5.1 S5800/S5820X系列交换机部署OAA引流的几个特点 ········································································ 16
5.1.1 对OAA板卡的支持情况 ··········································································································· 16 5.1.2 流量转发与重定向 ···················································································································· 16 5.1.3 对未知单播、组播、广播、ARP报文的处理 ········································································· 16 5.2 ANY域问题 ············································································································································· 16 5.3 OAA引流策略与PORTAL共存问题 ······································································································· 17
杭州华三通信技术有限公司
www.h3c.com.cn 第ii页
H3C S5800 IPS插卡开局指导书 关键词Key words:IPS插卡、FW插卡、OAA、堆叠 摘 要Abstract:
本文主要描述了SecBlade IPS,配合S5800及SecBlade II FW在不同组网环境下的典型组网及配置方案,以及在实际部署过程中的注意事项,供插卡开局同学参考。
缩略语清单List of abbreviations:
Abbreviations缩略语 Full spelling 英文全名 Chinese explanation 中文解释 IPS ACG FW
Intrusion Prevention System Application Control Gateway FireWall 入侵防御系统 应用控制网关 防火墙 杭州华三通信技术有限公司
www.h3c.com.cn 第1页
H3C S5800 IPS插卡开局指导书 1 SecBlade安全插卡概述
1.1 产品简介
H3C SecBlade IPS、H3C SecBlade ACG插卡产品采用H3C公司最新硬件平台和体系架构,支持分布式部署和集中管理,可灵活扩展。通过基于Web浏览器的管理界面,管理员可以快速熟悉系统的操作管理。H3C SecBlade IPS/ACG插卡,可以和S5800/S5820X系列低端交换机、S7500E/S10500系列中端交换机、S9500系列/S9500E系列/S12500系列高端交换机以及SR6600/SR8800路由器配合使用;可以在已使用该交换机/路由器的用户网络中快速部署,满足对流量运营管理的需要。
H3C SecBlade IPS单板类型:
? ? ? ? ? ? ?
LSWM1IPS10:适用于H3C S5800/S5820X系列交换机 LSQ1IPSSC0:适用于H3C S7500E系列交换机 LSB1IPS1A0:适用于H3C S9500系列交换机 LSR1IPS1A1:适用于H3C S9500E系列交换机 LST1IPS1A1:适用于H3C S12500系列交换机 SPE-IPS-200:适用于H3C SR6600系列路由器 IM-IPS:适用于H3C SR8800系列路由器
H3C SecBlade ACG单板类型:
? ? ? ? ? ? ?
LSWM1IPS10:适用于H3C S5800/S5820X系列交换机 LSQ1IPSSC0:适用于H3C S7500E系列交换机 LSB1IPS1A0:适用于H3C S9500系列交换机 LSR1IPS1A1:适用于H3C S9500E系列交换机 LST1IPS1A1:适用于H3C S12500系列交换机 SPE-IPS-200:适用于H3C SR6600系列路由器 IM-IPS:适用于H3C SR8800系列路由器
H3C SecBlade II 防火墙插卡采用H3C公司最新的硬件平台和体系架构,是H3C公司面向大型企业和运营商客户开发的新一代电信级防火墙产品。SecBlade II 防火墙插卡采用了专用多核多线程高性能处理器和高速存储器,在高速处理安全业务的同时,交换机的原有业务处理不会受到任何影响。
插卡式H3C SecBlade II防火墙单板类型:
? ?
LSWM1IPS10:适用于H3C S5800/S5820X系列交换机 LSQ1IPSSC0:适用于H3C S7500E系列交换机
www.h3c.com.cn
第2页
杭州华三通信技术有限公司
? ? ? ? ?
H3C S5800 IPS插卡开局指导书 LSB1IPS1A0:适用于H3C S9500系列交换机 LSR1IPS1A1:适用于H3C S9500E系列交换机 LST1IPS1A1:适用于H3C S12500系列交换机 SPE-IPS-200:适用于H3C SR6600系列路由器 IM-IPS:适用于H3C SR8800系列路由器
1.2 主要特点
?
将主网络设备的转发业务和安全处理有机融合在一起,在实现主网络设备高性能数据转发的同时,能够根据组网的特点处理安全业务,实现安全防护和监控。
?
SecBlade IPS/ACG插卡基于H3C公司领先的OAA(Open Application Architecture)架构开发,通过内部10GE以太网接口与主网络设备相连。H3C主网络设备的线速转发能力,保证了其与安全业务插卡之间的高速数据转发。
?
SecBlade IPS/ACG插卡采用了专用多核多线程高性能处理器和高速存储器,在高速处理安全业务的同时,主网络设备的原有业务处理不会受到任何影响。
?
SecBlade IPS/ACG插卡可以插在主网络设备上的多个槽位,并且在一台主网络设备上可插入多块插卡进行性能扩展,轻松适应不断升级的企业和电信运营商网络。
杭州华三通信技术有限公司
www.h3c.com.cn 第3页
正在阅读:
高职教育人才培养质量第三方评价体系实践研究-最新教育资料05-21
2014年马年年会主持稿09-09
我的买书经历作文350字06-24
2018贵州自考大学英语考试大纲03-08
高质量软件开发之道06-28
出现头发又软又少怎么办08-17
2018新版《中国共产党纪律处分条例》知识测试卷(附答案)04-14
深井井点降水施工工艺04-23
滇藏之旅--单车带我去西藏 - 图文09-29
- 多层物业服务方案
- (审判实务)习惯法与少数民族地区民间纠纷解决问题(孙 潋)
- 人教版新课标六年级下册语文全册教案
- 词语打卡
- photoshop实习报告
- 钢结构设计原理综合测试2
- 2014年期末练习题
- 高中数学中的逆向思维解题方法探讨
- 名师原创 全国通用2014-2015学年高二寒假作业 政治(一)Word版
- 北航《建筑结构检测鉴定与加固》在线作业三
- XX县卫生监督所工程建设项目可行性研究报告
- 小学四年级观察作文经典评语
- 浅谈110KV变电站电气一次设计-程泉焱(1)
- 安全员考试题库
- 国家电网公司变电运维管理规定(试行)
- 义务教育课程标准稿征求意见提纲
- 教学秘书面试技巧
- 钢结构工程施工组织设计
- 水利工程概论论文
- 09届九年级数学第四次模拟试卷
- 指导书
- 插卡
- 开局
- IPSACG
- S5800
- H3C
- 医学免疫学复习思考题
- 化工原理上册复习题
- 兰花的诗词赏析
- 行政法A - 最终版
- 中山大学附属第一医院住院费用合计87677.12可编辑 - 图文
- 蚌埠市南湖路顶管方案(专家论证修改)
- Studying abroad
- 下组煤集中胶带下山胶带电运输控技术规格书
- 师德表现及年度考核证明样本
- 09数应-王乐-实验四
- 世界上最伟大的管理原则
- 徐工ZL50G装载机转方向沉重故障的排除方法
- 高级编程技术模拟题
- 第一单元 教学反思
- 新人教版 六年级数学上册第四单元比教案含教学反思
- 长城颐和园
- 启动cad2006提示丢失aclst16.dll解决办法
- RCNA模拟题4
- 2018年铝型材精深加工项目可行性研究报告(目录)
- 新苏教版三年级上数学求一个数是另一数的几倍教学设计板书教案