Chapter 29 Secure Policy
ZyWALL Series CLI Reference Guide
223
29.2 Secure Policy Commands
The following table identifies the values required for many of these commands. Other input values are
discussed with the corresponding commands.
The following table describes the commands available for the secure policy. You must use the
configure terminal command to enter the configuration mode before you can use the
configuration commands. Commands that do not have IPv6 specified in the description are for IPv4.
Table 112 Input Values for Secure Policy Commands
LABEL DESCRIPTION
address_object
The name of the IP address (or address group) object. You may use 1-31 alphanumeric
characters, underscores(
_), or dashes (-), but the first character cannot be a number.
This value is case-sensitive.
address6_object
The name of the IPv6 address (or address group) object. You may use 1-31 alphanumeric
characters, underscores(
_), or dashes (-), but the first character cannot be a number.
This value is case-sensitive.
user_name
The name of a user (group). You may use 1-31 alphanumeric characters, underscores(_),
or dashes (-), but the first character cannot be a number. This value is case-sensitive.
zone_object
The name of the zone. For some Zyxel Device models, use up to 31 characters (a-zA-Z0-
9_-). The name cannot start with a number. This value is case-sensitive.
For other Zyxel Devicemodels, use pre-defined zone names like DMZ, LAN1, SSL VPN,
IPSec VPN, OPT, and WAN.
rule_number
The priority number of a secure policy. 1 - X where X is the highest number of rules the
Zyxel Device model supports. See the Zyxel Device’s User’s Guide for details.
schedule_object
The name of the schedule. You may use 1-31 alphanumeric characters, underscores(_),
or dashes (-), but the first character cannot be a number. This value is case-sensitive.
service_name
The name of the service (group). You may use 1-31 alphanumeric characters,
underscores(
_), or dashes (-), but the first character cannot be a number. This value is
case-sensitive.
Table 113 Command Summary: Secure Policy
COMMAND DESCRIPTION
secure-policy activate
Enables Secure Policy on the Zyxel Device to perform access
control.
secure-policy backup activate
Backs up all secure policies configured on the Zyxel Device when
you make any configuration changes (insert/modify/delete/
append).
Type dir /conf/ to see all configuration files on the Zyxel Device.
These files are also visible in Maintenance > File Manager >
Configuration File in the web configurator. Filenames beginning
with autoback are automatic configuration files created when
new firmware is uploaded. backup-yyyy-mm-dd-hh-mm-ss.conf
is the name of the automatic backup when a secure policy is
added or changed. Type appy config-file-name to restore
secure policy configuration to what it was before that change.
show secure-policy _check-
exposed-srv
Displays if only specified IP addresses or Fully Qualified Domain
Names (FQDNs) are allowed to access the Zyxel Device remotely.
Displays if only SSL VPN clients from specified regions are allowed
to access the Zyxel Device.
show secure-policy backup status
Displays if backing up of secure policies when changes are done is
configured on the Zyxel Device.
To Next Page
Loading...
