Firewall connects to router to achieve enterprise-level practice of dual-machine hot backup

Network topology:

1. Dual-machine hot standby configuration based on OSPF routing protocol

FW1/FW2 firewall interface security zone division:

firewall zone trust
add interface GigabitEthernet1/0/1
firewall zone untrust
add interface GigabitEthernet1/0/2
firewall zone dmz
add interface GigabitEthernet1/0/6


interface GigabitEthernet1/0/1
service-manage  ping  permit 
interface GigabitEthernet1/0/2
service-manage ping permit
interface GigabitEthernet1/0/6
service-manage ping permit

security-policy
default action deny

Enable OSPF routing interconnection protocol:

[R1]ospf router-id 1.1.1.1
[R1-ospf-1]area 0

[R2]ospf router-id 2.2.2.2
[R2-ospf-1]area 0

[R3]ospf router-id 3.3.3.3
[R3-ospf-1]area 0

[R3]ospf router-id 4.4.4.4
[R4-ospf-1]area 0

[FW1]ospf router-id 100.1.1.1
[FW1-ospf-1]area 0

[FW2]ospf router-id 100.2.2.2
[FW2-ospf-1]area 0

Configure the process id and open area 0. <