firewall Commands
firewall rule add
Add a rule.
SYNTAX:
firewall rule add
where:
chain
index
name
clink
srcintf [!]
srcip [!]
dstintf [!]
dstip [!]
serv [!]
E-DOC-CTC-20071119-0014 v2.0
chain = <chain name>
[index = <number>]
[name = <string>]
[clink = <chain name>]
[srcintf [!] = <{wan|local|lan|tunnel|dmz|
guest}>]
[srcip [!] = <{private|ssdp_ip|mdap_ip}>]
[dstintf [!] = <{wan|local|lan|tunnel|dmz|
guest}>]
[dstip [!] = <{private|ssdp_ip|mdap_ip}>]
[serv [!] = <{icmp|igmp|ftp|telnet|http|
httpproxy|https|RPC|NBT|SMB|imap|esp|ah|
ike|DiffServ|sip|h323|dhcp|rtsp|ssdp_serv|
mdap_serv|syslog}>]
[log = <{disabled|enabled}>]
[state = <{disabled|enabled}>]
action = <{accept|deny|drop|reset|count|link}>
The name of the chain which contains the rule.
The index of the rule in the chain.
The name of the new rule.
The name of the chain to be parsed when this
rule applies.
The name of the source interface expression.
If a value is preceded by a "!", it means NOT.
The name of the source ip expression.
If a value is preceded by a "!", it means NOT.
The name of the destination interface
expression.
If a value is preceded by a "!", it means NOT.
The name of the destination ip expression.
If a value is preceded by a "!", it means NOT.
The name of the service expression.
If a value is preceded by a "!", it means NOT.
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
403