Chapter 18 Application Patrol
ZyWALL (ZLD) CLI Reference Guide
145
18.2.2 Rule Commands for Pre-defined Applications
This table lists the commands for rules in each pre-defined application.
[no] app protocol_name defaultport <1..65535> For port-base applications. Adds the specified port
to the list of ports used to identify the specified
application. This port number can only be included
in one application’s list. The
no command removes
the specified port from the list.
[no] app protocol_name allowport <1..65535> If the default action is drop or reject. Adds the
specified port to the list of ports that are forwarded
in spite of the default action. The
no command
removes the specified port from the list.
Table 73 app Commands: Pre-Defined Applications (continued)
COMMAND DESCRIPTION
Table 74 app Commands: Rules in Pre-Defined Applications
COMMAND DESCRIPTION
app protocol_name rule insert rule_number Creates a new rule at the specified row and enters
sub-command mode.
app protocol_name rule append Creates a new rule, appends it to the end of the list,
and enters sub-command mode.
app protocol_name rule rule_number Enters sub-command mode for editing the rule at
the specified row.
app protocol_name rule default Enters sub-command mode for editing the default
rule for the application.
[no] activate Turns on this rule. The
no command turns off this
rule.
[no] port <0..65535> Specifies the destination port. 0 means any.
[no] schedule profile_name Adds the specified schedule to the rule.
[no] user username Adds the specified user to the rule.
[no] from zone_name Specifies the source zone.
[no] to zone_name Specifies the destination zone.
[no] source profile_name Adds the specified source address to the rule.
[no] destination profile_name Adds the specified destination address to the rule.
access {forward | drop | reject} Specifies the action when traffic matches the rule.
[no] action-block
{login|message|audio|video|file-transfer}
Blocks use of a specific feature.
bandwidth {inbound|outbound} <0..1048576> Limits inbound or outbound bandwidth, in kilobits
per second. 0 disables bandwidth management for
traffic matching this rule.
[no] bandwidth excess-usage Enables maximize bandwidth usage to let the traffic
matching this policy “borrow” any unused
bandwidth on the out-going interface.
bandwidth priority <1..7> Set the priority for traffic that matches this rule. The
smaller the number, the higher the priority.
[no] log [alert] Creates log entries (and alerts) for traffic that
matches the rule. The
no command does not
create any log entries.
To Next Page
Loading...
