您的位置:360文档中心› H3C路由器配置方法

H3C路由器配置方法


#
version 5.20, Beta 5111
#
sysname H3C
#
ftp server enable
#
l2tp enable
#
undo voice vlan mac-address 00e0-bb00-0000
#
domain default enable system
#
dns proxy enable
dns server 61.139.2.69
dns server 202.98.192.67
#
telnet server enable
#
qos carl 2 source-ip-address range 192.168.100.2 to 192.168.100.252 per-address shared-bandwidth
#
mac-address timer no-aging
#
acl number 3000
rule 0 permit ip
acl number 3001
rule 0 permit ip source 192.168.0.2 0
rule 1 permit ip source 192.168.0.3 0
rule 2 deny ip source 192.168.55.0 0.0.0.255
rule 3 permit ip source 192.168.0.22 0
rule 4 permit ip source 192.168.0.5 0
rule 5 permit ip source 192.168.0.27 0
rule 13 permit ip source 192.168.0.20 0
rule 14 permit ip source 192.168.0.163 0
rule 15 permit ip source 192.168.0.60 0
rule 16 permit ip source 192.168.0.21 0
rule 17 permit ip source 192.168.0.51 0
rule 18 permit ip source 192.168.0.67 0
rule 19 permit ip source 192.168.0.86 0
rule 20 permit ip source 192.168.0.141 0
rule 21 permit ip source 192.168.0.151 0
rule 22 permit ip source 192.168.0.160 0
rule 23 permit ip source 192.168.0.161 0
rule 24 permit ip source 192.168.0.190 0
rule 29 deny ip source 192.168.100.0 0.0.0.255
rule 30 deny ip source 192.168.0.0 0.0.0.255
rule 40 permit ip
#
vlan 1
#
radius scheme system
#
domain https://www.360docs.net/doc/d87790281.html,
access-limit disable
state active
idle-cut disable
self-service-url disable
ip pool 1 192.168.55.10 192.168.55.254
domain system
access-limit disable
state active
idle-cut disable
self-service-url disable
ip pool 1 192.168.0.4 192.168.0.5
ip pool 22 192.168.0.50 192.168.0.99
#
ipsec proposal xxx
#
user-group system
#
local-user admin
password cipher 6=K5R$X`*_;A@T+:6_GFQQ!!
authorization-attribute level 3
service-type telnet
local-user vpn
password simple password
service-type ssh
service-type ppp
local-user xintiandian
password simple xintian
service-type ssh
service-type ppp
#
l2tp-group 1
undo tunnel authentication
mandatory-lcp
allow l2tp virtual-template 0
#
interface Dialer1
nat outbound 3001
nat server 1 protocol tcp global current-interface www inside 192.168.0.3 www
link-protocol ppp
ppp chap user xxxxxxxxxx
ppp chap password simple 0000
ppp pap local-user xxxxxxxxxx password simple 0000
ppp ipcp dns request
ip address ppp-negotiate
tcp mss 1024
dialer user pppoeclient
dialer-group 1
dialer bundle 1
#
interface Virtual-Template0
ppp authentication-mode chap domain https://www.360docs.net/doc/d87790281.html,
ppp ipcp remote-address forced
ppp ipcp dns 202.98.192.67 202.98.198.167
remote address pool 2
ip address 192.168.55.1 255.255.255.0
#
interface NULL0
#
interface GigabitEthernet0/0
port link-mode route
ip address 192.168.0.254 255.255.255.0
tcp mss 1024
#
interface GigabitEthernet0/1
port link-mode route
ip address 192.168.100.1 255.255.255.0
qos apply policy default outbound
#
interf

ace GigabitEthernet0/2
port link-mode route
tcp mss 1024
#
interface GigabitEthernet0/3
port link-mode route
#
interface GigabitEthernet0/4
port link-mode route
ip address 192.168.255.1 255.255.255.0
#
interface GigabitEthernet0/5
port link-mode route
nat outbound 3001
pppoe-client dial-bundle-number 1
tcp mss 1024
qos apply policy default outbound
#
rip 1
undo summary
network 0.0.0.0
import-route static
#
ip route-static 0.0.0.0 0.0.0.0 Dialer1
#
gratuitous-arp-sending enable
naturemask-arp enable
arp resolving-route enable
#
dialer-rule 1 ip permit
#
load xml-configuration
#
user-interface con 0
user-interface vty 0 4
authentication-mode scheme
#
return
[H3C]

相关主题
相关文档
最新文档