HP ProCurve 7102dl Reference Manual page 405
Secure router sros command line interface
Hide thumbs
Also See for ProCurve 7102dl:
- Configuration manual (1114 pages) ,
- Product end-of-life disassembly instructions (2 pages) ,
- Advanced management and configuration manual (1005 pages)
Table of Contents
Advertisement
SROS Command Line Interface Reference Guide
ip firewall check reflexive-traffic
Use the ip firewall check reflexive-traffic command to enable the SROS stateful inspection firewall to
process traffic from a primary subnet to a secondary subnet on the same interface through the firewall. Use
the no form of this command to disable this feature.
Note
The SROS security features must be enabled (using the ip firewall command) for the
stateful inspection firewall to be activated.
Syntax Description
No subcommands.
Default Values
All SROS security features are disabled by default until the ip firewall command is issued at the Global
Configuration prompt. In addition, the reflexive traffic check is disabled until the ip firewall check
reflexive-traffic command is issued.
Functional Notes
This command allows the firewall to process traffic from a primary subnet to a secondary subnet on the
same interface through the firewall. If enabled, this traffic will be processed through the access-policy on
that interface and any actions specified will be executed on the traffic.
Usage Examples
The following example enables the SROS reflexive-traffic check:
ProCurve(config)#ip firewall check reflexive-traffic
5991-2114
© Copyright 2007 Hewlett-Packard Development Company, L.P.
Global Configuration Mode Command Set
403
Advertisement
Chapters
Table of Contents
