This post provides an example for creating a security policy in the Firewall via WebUI on eNSP. Please have a look below to see more details.
Note:
This is a continuation of my earlier post about accessing the WebUI of USG6000V on eNSP (https://forum.huawei.com/enterprise/en/Experience-in-using-the-Firewall-USG6000V-Web-UI-on-eNSP/thread/518347-865).
1. The topology to be used is shown below.
(In this example, we are creating a security policy in which we are allowing our PC to access the router.)
2. Open a browser and enter https://10.3.0.1:8443.
3. On the login UI, enter username webadmin and password <password> and click Login to access the web UI.
4. Select the Interface Name, change the Zone to untrust and input an IP Address as shown below.
5. Go to Policy Tab and select Security Policy on the Sidebar, then select Add Security Policy.
6. Specify necessary information then select OK when done.
Source Zone is Trust and Destination Zone is Untrust. It means that the Firewall will allow traffic to pass from the Trust Zone to the Untrust Zone.
You can specify a particular IP Address in the Source and Destination Address/Region, in this case it is set to ANY.
You can also select the Action to be done by the Firewall in this security policy, in this case it is set to Permit.
7. Verify that the created security policy is Enabled.
