Configuring alg in the web interface, Alg configuration examples in the web interface, Ftp alg configuration example – H3C Technologies H3C SecPath F1000-E User Manual
Page 54: Network requirements
47
The host and the FTP server exchange data through the established data connection.
Configuring ALG in the Web interface
By default, the ALG function is enabled for all protocols.
From the navigation tree, select Firewall > ALG to enter the page as shown in
.
Figure 34 ALG configuration page
•
To add selected application protocols, select them in the Optional Application Protocols list and
click the << button. Then the protocols will be added to the Selected Application Protocols list.
•
To remove selected application protocols, select them in the Selected Application Protocols list and
click the >> button. Then the protocols will be removed to the Optional Application Protocols list.
ALG configuration examples in the Web interface
The following examples describe only ALG-related configurations, assuming that other required
configurations on the server and client have been done.
FTP ALG configuration example
Network requirements
As shown in
, a company uses the private network segment 192.168.1.0/24, and has four
public network addresses: 5.5.5.1, 5.5.5.9, 5.5.5.10, and 5.5.5.11. The company wants to provide FTP
services to the outside.
Configure NAT and ALG on the SecPath so that hosts on the external network can access the FTP server
on the internal network.