Siemens SCALANCE S615

To Next Page

To Previous Page

Security and authentication

9.2 Firewall

SCALANCE S615 Command Line Interface

Configuration Manual, 06/2015, C79000-G8976-C406-02

321

Requirement

● The service name or protocol name has been created.

● You are in the FIREWALL configuration mode.

The command prompt is as follows:

cli(config-fw)#

Syntax

Call up the command with the following parameters:

ipv4rule from <string(50)> [<integer(0-4094)>] to <string(50)> [<integer(0-4094)>]

srcip <string(50)>

dstip <string(50)> action {drop|acc|rej} [service <string(32)>] [log

{no|info|war|cri}] [prior <integer(0-64)>]

The parameters have the following meaning:

Parameter

Description

Range of values / note

from

Keyword for the outgoing direc-

tion (from)

string

Interface that sends the IPv4

packet

Specify a valid interface.

Maximum of 50 characters

integer

Number of the interface

0 ... 4094

Keyword for the incoming direc-

tion (to)

string

Interface that receives the IPv4

packet

Specify a valid interface.

Maximum of 50 characters

integer

Number of the interface

0 ... 4094

srcip

Keyword for the source

string

Address that sends IPv4 packets.

• Individual IP address: Specify the IP

address.

• IP address range: Specify the range

with the start address "-" end address,

e.g.192.168.100.10 - 192.168.100.20.

• All IP addresses: Specify " 0.0.0.0/0".

dstip

Keyword for the destination

string

Address that receives IPv4 pack-

ets.

• Individual IP address: Specify the IP

address.

• IP address range: Specify the range

with the start address "-" end address,

e.g.192.168.100.10 - 192.168.100.20.

• All IP addresses: Specify " 0.0.0.0/0".

action

Keyword for the action with in-

coming IPv4 packets

acc

The data packets can pass

through.

Siemens SCALANCE S615 - Page 321

Table of Contents

Other manuals for Siemens SCALANCE S615

Related product manuals