求助：关于华为防火墙

jennyandjeremy · 发表于 2013-1-29 17:12:12

PC与防火墙直连，且都有设置网关

华为防火墙配置如下：
acl number 3001
rule 0 permit ip
rule 5 permit ip source 12.1.1.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
acl number 3002
rule 0 permit ip source 192.168.1.0 0.0.0.255 destination 12.1.1.0 0.0.0.255

#
firewall statistic system enable

#
firewall packet-filter default permit interzone local trust direction inbound
firewall packet-filter default permit interzone local trust direction outbound
firewall packet-filter default permit interzone local untrust direction inbound
firewall packet-filter default permit interzone local untrust direction outbound
firewall packet-filter default permit interzone local rc31 direction inbound
firewall packet-filter default permit interzone local rc31 direction outbound
firewall packet-filter default permit interzone local apg40extend direction inbound
firewall packet-filter default permit interzone local apg40extend direction outbound
firewall packet-filter default permit interzone local qi15 direction inbound
firewall packet-filter default permit interzone local qi15 direction outbound

#
interface GigabitEthernet0/0/0
ip address 192.168.1.1 255.255.255.0

#
interface GigabitEthernet0/0/3
ip address 12.1.1.1 255.255.255.0

#
firewall zone local
set priority 100

#
firewall zone trust
set priority 85
add interface GigabitEthernet0/0/0

#
firewall zone untrust
set priority 5
add interface GigabitEthernet0/0/3

#
firewall interzone trust untrust
packet-filter 3001 inbound
packet-filter 3002 outbound

#
ip route-static 192.168.1.0 255.255.255.0 GigabitEthernet0/0/0

问题：为什么PC可以PING通对方的网关，就是不能互相PING 通。
求解决方法或者配置，使之PC之间能够互相ping通~！

jennyandjeremy · 发表于 2013-1-29 21:22:07

没有人知道吗？

账号		自动登录	找回密码
密码			论坛注册

[原创] 求助：关于华为防火墙

相关帖子

客服中心

投诉建议