Zte ZXR10 8900 Series - Policy Modify

To Next Page

To Previous Page

Chapter6policy(firewall)

Parameter

Description

logThisisoptional.Itsetswhethertorecordthe

eventinlogorpromptalarmmessagewhena

packetmatchesrule.Itdoesn’trecordevent

intologbydefault.

on|off|alarm

Thisrecordstheeventintolog/doesn’trecord

theeventintolog/generatesalarm.

enableThisisoptional,indicatingwhethertoenable

thisrule.Theruleisenabledbydefault.

yes|noEnable/Disable

before

Thisisoptional.Whenaddingonenewaccess

controlrule,itisavailabletoselectbefore

whichruletoplacethisnewrule.Thenew

ruleisplacedatendbydefault.

Thisisonenumber,indicatingIDofadded

accesscontrolrule.

ExampleT oaddoneaccesscontrolrule,executethefollowingcommand:

policyaddactionacceptsrcarea‘area_gei_5/1’src

‘any’serviceIPdpi‘http_policy’ar‘msn’avon

logon

enableyesvsid0

policymodify

Command

Function

Thiscommandisusedtomodifyoneaddedaccesscontrolrule.

CommandFormatpolicymodifyid<number1>[action<accept|deny>][srcarea

<string1>][dstarea<string2>][srcvlan<string3>][dstvlan

<string4>][src<string5>][dst<string6>][service<str

ing7>][schedule<string8>][sport<string9>][orig_dst

<string10>][dpi<string11>][ar<string12>][av<on|off>][

permanent<on|off>][log<on|off>][enable<yes|no>]

Parameter

Description

Parameter

Description

modifyThismodifiesoneFWaccessrule.

ThisisIDofdefinedaccesscontrolrule.

<number1>Thisisonenumber.

action

Thissetsaccessright.

accept|denypermit/deny

srcarea

Thissetssourcearea.

Thisisonestring.Itmustbeoneormore

presetareaname(s).Asformultiplearea

names,spaceisusedbetweeneachtwoarea

namesandalladdressesarequotedwith

singlequotes,suchas’area_gei_5/1’.

dstareaThissetsdestinationarea.

ConfidentialandProprietaryInformationofZTECORPORATION71

Main Page

Zte ZXR10 8900 Series - Policy Modify

Table of Contents

Other manuals for Zte ZXR10 8900 Series

Related product manuals