Chapter 33 Firewall
UAG CLI Reference Guide
173
{firewall|secure-policy} profile_name
{zone_object|Device} append
Enters the firewall sub-command mode to add a
direction specific through-Device rule or to-Device
rule to the end of the global rule list. See Table 106 on
page 174 for the sub-commands.
{firewall|secure-policy} profile_name
{zone_object|Device} delete <1..5000>
Removes a direction specific through-Device rule or
to-Device rule.
<1..5000>: the index number in a direction specific
firewall rule list.
{firewall|secure-policy} profile_name
{zone_object|Device} flush
Removes all direction specific through-Device rule or
to-Device rules.
{firewall|secure-policy} profile_name
{zone_object|Device} insert rule_number
Enters the firewall sub-command mode to add a
direction specific through-Device rule or to-Device
rule before the specified rule number. See Table 106
on page 174 for the sub-commands.
{firewall|secure-policy} profile_name
{zone_object|Device} move rule_number to rule_number
Moves a direction specific through-Device rule or to-
Device rule to the number that you specified.
[no] {firewall|secure-policy} activate Enables the firewall on the UAG. The
no command
disables the firewall.
{firewall|secure-policy} append Enters the firewall sub-command mode to add a
global firewall rule to the end of the global rule list.
See Table 106 on page 174 for the sub-commands.
{firewall|secure-policy} default-rule action {allow |
deny | reject} { no log | log [alert] }
Sets how the firewall handles packets that do not
match any other firewall rule.
{firewall|secure-policy} delete rule_number Removes a firewall rule.
{firewall|secure-policy} flush Removes all firewall rules.
{firewall|secure-policy} insert rule_number Enters the firewall sub-command mode to add a
firewall rule before the specified rule number. See
Table 106 on page 174 for the sub-commands.
{firewall|secure-policy} move rule_number to rule_number Moves a firewall rule to the number that you specified.
show connlimit max-per-host Displays the highest number of sessions that the UAG
will permit a host to have at one time.
show {firewall|secure-policy} Displays all firewall settings.
show {firewall|secure-policy} rule_number Displays a firewall rule’s settings.
show {firewall|secure-policy} profile_name
{zone_object|Device}
Displays all firewall rules settings for the specified
packet direction.
show {firewall|secure-policy} profile_name
{zone_object|Device} rule_number
Displays a specified firewall rule’s settings for the
specified packet direction.
show {firewall|secure-policy} status Displays whether or not the firewall is active, whether
or not asymmetrical route topology is allowed, and
the default firewall rule’s configuration.
show {firewall|secure-policy} block_rules Displays all the firewall rules that deny access.
show {firewall|secure-policy} any Device Shows all the to-Device firewall rules.
Table 105 Command Summary: Firewall (continued)
COMMAND DESCRIPTION
To Next Page
Loading...
