Configuring alg in the web interface, Enabling alg, Alg configuration examples – H3C Technologies H3C SecBlade FW Cards User Manual
Page 36: Ftp alg configuration example, Network requirements
29
Configuring ALG in the web interface
Enabling ALG
NOTE:
By default, the ALG function is enabled for all protocols.
In the navigation tree, select Firewall > ALG to enter the page as shown in
.
Figure 20 ALG configuration page
•
To add selected application protocols, select them in the Optional Application Protocols list and
click the << button. Then the protocols will be added to the Selected Application Protocols list.
•
To remove selected application protocols, select them in the Selected Application Protocols list and
click the >> button. Then the protocols will be removed to the Optional Application Protocols list.
ALG configuration examples
NOTE:
The following examples describe only ALG-related configurations, assuming that other required
configurations on the server and client have been done.
FTP ALG configuration example
Network requirements
As shown in
, a company accesses the Internet through a device with NAT and ALG enabled.
The company provides FTP services to the outside. The inside network segment of the company is
192.168.1.0/24, and the IP address of the FTP server is 192.168.1.2. Configure NAT and ALG to meet the
following requirements: