system-view                        //全局视图
interface GigabitEthernet1/0/1    //接口ip，根据所连接的网卡进行改动
   ip address 192.168.0.1 24 
security-zone name Trust	 //安全域
   import interface GigabitEthernet1/0/1    //把接口加入安全域
object-policy ip manage	        //创建对象策略
   rule pass			//规则动作
zone-pair security source trust destination local      //域间应用
   object-policy apply ip manage
ip http enable			//启用http和https的功能
ip https enable 
local-user admin class manage	//创建登入web的用户名和密码
   password simple admin 
   service-type http https 
   authorization-attribute user-role network-admin