Security Mode Configuration Commands
137
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
service_name
custom_services
custom service name The custom service that you have
configured with the security
services add command and to
which the firewall rule applies.
action
ALWAYS_BLOCK, ALWAYS_ALLOW,
BLOCK_BY_SCHEDULE_ELSE_ALLOW,
or ALLOW_BY_SCHEDULE_ELSE_BLOCK
Specifies the type of action to be
enforced by the rule.
schedule Schedule1, Schedule2, or
Schedule3
Specifies the schedule, if any, that
is applicable to the rule.
DMZ server address, port number translation, and WAN destination address
send_to_dmz_server_ip ipaddress The IP address of the DMZ server.
translate_to_port_number
enable
Y or N Enables or disables port
forwarding.
translate_to_port_number
port
number The port number (integer) if port
forwarding is enabled. Valid
numbers are 0 through 65535.
wan_destination_ip_address
WAN1, WAN2, WAN3, or WAN4 Specifies the IP address of the
selected WAN interface as the
destination address.
Note: The
wan_destination_ip_address
and
wan_destination_ip_address_start
keywords are mutually exclusive.
wan_destination_ip_address_start
ipaddress The WAN IP address, if the
destination address is different
from the IP address of a WAN
interface, for example, a secondary
WAN IP address.
Note: The
wan_destination_ip_address
and
wan_destination_ip_address_start
keywords are mutually exclusive.
DMZ user addresses and WAN user addresses
dmz_users ANY, SINGLE_ADDRESS, or
ADDRESS_RANGE
Specifies the type of DMZ address.
For an inbound rule, this option is
available only when the WAN mode
is Classical Routing.
Keyword (might consist of two
separate words)
Associated Keyword to Select or
Parameter to Type
Description
To Next Page
Loading...
