Table of Contents
Advertisement
F
C
IREWALL
OMMANDS
(F
)
RULE
IREWALL
Mode
Firewall Configuration
Usage
When the firewall is enabled and no rules are added, all traffic is blocked by default,
you can use this command to create rules for permitting packets between entities.
The rule is not valid and cannot be hit if either the application, source entity or
destination entity the rule applies to is not properly configured, for example, the
application does not exist or does not have a protocol configured or the entity
does not exist. To configure applications and entities, see Application and Entity
Commands. You can also use the
check rule configuration validity.
You can change the rule order by using the
To create a rule for permitting application ping between publicand private,
Examples
use the command:
awplus(config-firewall)#
to private
To create a rule for denying application http between public.wanand
private.lan, use the command:
awplus(config-firewall)#
private.lan
You can also use the following commands to create a rule for permitting
application ping between publicand dmz and logging the results.
awplus(config-firewall)#
dmz
awplus(config-firewall)#
to dmz
Validation
show firewall rule
commands
show firewall rule config-check
Related
move rule (Firewall)
commands
C613-50077-01 REV A
show firewall rule config-check
rule 10 permit ping from public
rule deny http from public.wan to
rule 20 log ping from public to
rule 30 permit ping from public
Command Reference for AT-AR3050S
AlliedWare Plus™ Operating System - Version 5.4.5-2.x
command to
move rule (Firewall)
command.
2105
- Quick Links:
- Configure Terminal
Hide quick links:
Advertisement
Table of Contents
