EasyManuals Logo
Home>Siemens>Network Hardware>RUGGEDCOM ROX II

Siemens RUGGEDCOM ROX II User Manual

Siemens RUGGEDCOM ROX II
798 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #253 background imageLoading...
Page #253 background image
RUGGEDCOM ROX II
CLI User Guide
Chapter 6
Security
Configuring the Source Zone 207
Parameter Description
dnat: Forwards the request to another system and (optionally) another port.
dnat-: Only generates the DNAT IPtables rule and not the companion ACCEPT rule.
drop: The connection request is ignored. No notification is sent.
redirect: Redirects the request to a local TCP port number on the local firewall.
reject: Rejects the connection with an RST (TCP) or ICMP destination-unreachable.
source-zone-hosts { source-zone-hosts } Synopsis:  A string
(Optional) Add comma-separated host IPs to a predefined source-zone.
destination-zone-hosts { destination-zone-
hosts }
Synopsis:  A string
(Optional) Add comma-separated host IPs to the destination-zone - may include :port for
DNAT or REDIRECT.
log-level { log-level } Synopsis:  { none, debug, info, notice, warning, error, critical, alert, emergency }
Default:  none
(Optional) Determines whether or not logging will take place and at which logging level.
protocol { protocol } Synopsis:  { tcp, udp, icmp, all } or a string
Default:  all
The protocol to match for this rule - must be 'udp' for rules using copy-dnat actions.
source-ports { source-ports } Synopsis:  A string
Default:  none
(Optional) The TCP/UDP port(s) the connection originated from. Default: all ports. Add a
single port or a list of comma-separated ports
destination-ports { destination-ports } Synopsis:  A string
Default:  none
(Optional) The TCP/UDP port(s) the connection is destined for. Default: all ports. Add a
single port or a list of comma-separated ports
original-destination { original-destination } Synopsis:  { None } or a string
Default:  none
(Optional) The destination IP address in the connection request as it was received by the
firewall - (mandatory) for rules using copy-dnat actions.
description { description } Synopsis:  A string
(Optional) The description string for this rule.
4. Type commit and press Enter to save the changes, or type revert and press Enter to abort.
Section6.9.15.3
Configuring the Source Zone
To configure the source zone for a firewall rule, do the following:
1. Make sure the CLI is in Configuration mode.
2. Navigate to security» firewall» fwconfig» {firewall}» fwrule{rule}» source-zone, where {firewall} is the
name of the firewall and {rule} is the name of the rule.
3. Configure the following parameter(s) as required:
Parameter Description
predefined-zone { predefined-zone } Synopsis:  A string
A predefined zone

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Siemens RUGGEDCOM ROX II and is the answer not in the manual?

Siemens RUGGEDCOM ROX II Specifications

General IconGeneral
BrandSiemens
ModelRUGGEDCOM ROX II
CategoryNetwork Hardware
LanguageEnglish

Related product manuals