Security Mode Configuration Commands
129
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
security firewall ipv4 add_rule dmz_wan outbound
This command configures a new IPv4 DMZ WAN outbound firewall rule. After you have
issued the security firewall ipv4 add_rule dmz_wan outbound command, you
enter the security-config [firewall-ipv4-dmz-wan-outbound] mode, and then you can configure
one keyword and associated parameter or associated keyword at a time in the order that you
prefer. However, note that the setting of the action keyword determines which other
keywords and parameters can you can apply to a rule.
Step 1 Format security firewall ipv4 add_rule dmz_wan outbound
Mode security
Step 2 Format service_name {default_services <default service name> |
{custom_services <custom service name>}
action {ALWAYS_BLOCK | ALWAYS_ALLOW |
BLOCK_BY_SCHEDULE_ELSE_ALLOW {schedule {Schedule1 |
Schedule2 | Schedule3}} | ALLOW_BY_SCHEDULE_ELSE_BLOCK
{schedule {Schedule1 | Schedule2 | Schedule3}}}
dmz_users {ANY | SINGLE_ADDRESS {dmz_user_start_ip <ipaddress>}
| ADDRESS_RANGE {dmz_user_start_ip <ipaddress>}
{dmz_user_end_ip <ipaddress>}}
wan_users {address_wise {ANY | SINGLE_ADDRESS {wan_user_start_ip
<ipaddress>} | ADDRESS_RANGE {wan_user_start_ip <ipaddress>}
{wan_user_end_ip <ipaddress>}} | group_wise <group name>}
qos_profile <profile name>
log {NEVER | ALWAYS}
{nat_ip ty
pe {Auto | WAN1 | WAN2 | WAN3 | WAN4} | address
<ipaddress>}
Mode security-config [firewall-ipv4-dmz-wan-outbound]
To Next Page
Loading...
