[H3C]display current-configuration # version 5.20, Release 3734P13 # sysname H3C # undo voice vlan mac-address 00e0-bb00-0000 # domain default enable system # undo alg dns undo alg rtsp undo alg h323 undo alg sip undo alg sqlnet undo alg pptp undo alg ils undo alg nbt undo alg msn undo alg qq undo alg tftp undo alg sccp undo alg gtp # session synchronization enable # password-recovery enable # vlan 1 # domain system access-limit disable state active idle-cut disable self-service-url disable # pki domain default crl check disable # user-group system group-attribute allow-guest # local-user admin password cipher $c$3$EJ8F6y+KQlskCVH6ma4PoojmwW6qsDJ7 authorization-attribute level 3 service-type telnet service-type web # interface NULL0 # interface GigabitEthernet0/0 port link-mode route ip address 192.168.0.1 255.255.255.0 # interface GigabitEthernet0/1 port link-mode route # interface GigabitEthernet0/2 port link-mode route # interface GigabitEthernet0/3 port link-mode route # interface GigabitEthernet0/4 port link-mode route # interface GigabitEthernet0/5 port link-mode route # interface GigabitEthernet0/6 port link-mode route # interface GigabitEthernet0/7 port link-mode route # interface GigabitEthernet0/8 port link-mode route # interface GigabitEthernet0/9 port link-mode route # interface GigabitEthernet0/10 port link-mode route # interface GigabitEthernet0/11 port link-mode route # vd Root id 1 # zone name Management id 0 priority 100 import interface GigabitEthernet0/0 zone name Local id 1 priority 100 zone name Trust id 2 priority 85 zone name DMZ id 3 priority 50 zone name Untrust id 4 priority 5 switchto vd Root zone name Management id 0 ip virtual-reassembly zone name Local id 1 ip virtual-reassembly zone name Trust id 2 ip virtual-reassembly zone name DMZ id 3 ip virtual-reassembly zone name Untrust id 4 ip virtual-reassembly # load xml-configuration # load tr069-configuration # user-interface con 0 authentication-mode password set authentication password cipher $c$3$/sqbV+O3XBaHvFs0svkpR4dBSIcdBygQYQ== user-interface vty 0 4 authentication-mode scheme # return [H3C]
麻烦帮忙解决下.谢谢了.
(0)
最佳答案
内网网卡的IP设置的是与GI 0/0 同一网段的IP. 192.168.0.3 /24 就是登不上这个防火墙.
电脑与防火墙互相Ping 不通.
service-type http https //此条命令在我的防火墙上不能用
提示为:
[H3C-luser-admin]service-type http https
% Unrecognized command found at "^" position.
[H3C-luser-admin]
此条命令参数为:
[H3C-luser-admin]service-type ?
ftp FTP service type
lan-access LAN-ACCESS service type
portal Portal service type
ppp Specify user type to ppp
ssh Secure Shell service type
telnet TELNET service type
terminal TERMINAL service type
web Web service type
[H3C-luser-admin]service-type
(0)
用这个service-type web 开启,设备是v5的没有上述你说的命令
(0)
<H3C>system-view System View: return to User View with Ctrl+Z. [H3C]sys firewall [firewall]zone name management [firewall-zone-management]import interface GigabitEthernet 0/0 [firewall-zone-management]qu [firewall]local-user admin [firewall-luser-admin]service-type web [firewall-luser-admin]authorization-attribute level 3 [firewall-luser-admin]password simple 123456 [firewall-luser-admin]quit [firewall]display ip http HTTP port: 80 Basic ACL: 0 Current connection: 0 Operation status: Running 现在的情况还是无法PING通防火墙.防火墙也PING不通电脑. 麻烦帮我找找原因.谢谢.
电脑能ping 通防火墙管理地址吗?能不能打开web 登录页面?登录不上提示什么报错?
(0)
防火墙与电脑互相PING不通.可以电脑的网卡,发送和接收都有数据.
可以尝试命令行放通管理域到local的访问: interzone source Management destination Local rule 0 permit source-ip any_address destination-ip any_address service any_service rule enable
我是小白.管理域命令不太会用.麻烦帮我列下具体操作好吗?谢谢!
不好意思,需要你自己操作
WEB登录失败,以下是排查要点,请参考:
1、检查用户名、密码是否已输入正确。
2、检查防火墙是否能被PING通。
3、console登录防火墙确认是否已赋予了WEB权限,如果没有,以下是赋予权限的参考命令:
local-user admin
service-type http https
quit
4、更换其他浏览器、清理浏览器缓存、更新浏览器flash
5、看下防火墙的软件版本是否最新,可考虑升级到最新。
(0)
service-type http https 这条命令不能用. [H3C-luser-admin]service-type http ^ % Unrecognized command found at '^' position. [H3C-luser-admin] 实际这个命令没有HTTP和HTTPS这两个参数. [H3C-luser-admin]service-type ? ftp FTP service type lan-access LAN-ACCESS service type portal Portal service type ppp Specify user type to ppp ssh Secure Shell service type telnet TELNET service type terminal TERMINAL service type web Web service type [H3C-luser-admin]service-type 实际参数是上面的这些.
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明