34. ここに定義する
SSG Webサーバ
untrust DMZ
The eth1 eth2 eth0
internet
trust
eth3 eth4
35. set interface "ethernet1" zone "Untrust"
set interface "ethernet2" zone "DMZ“
set policy id 1 from " Untrust " to "DMZ"
"Any" “yyy.yyy.yyy.yyy" “HTTP" permit
set policy id 2 from "Untrust" to "DMZ"
"Any" "Any" "ANY" deny log