Firewall Packet-Filter - HPE FlexNetwork HSR6800 Security Command Reference
Hide thumbs
Also See for FlexNetwork HSR6800:
- Configuration manual (503 pages) ,
- Command reference manual (153 pages) ,
- Product end-of-life disassembly instructions (2 pages)
Table of Contents
Advertisement
undo firewall ipv6 enable
Default
The IPv6 firewall function is disabled.
Views
System view
Default command level
2: System level
Examples
# Enable the IPv6 firewall function.
<Sysname> system-view
[Sysname] firewall ipv6 enable
firewall packet-filter
Use firewall packet-filter to configure IPv4 packet filtering on the interface.
Use undo firewall packet-filter to cancel the configuration.
Syntax
firewall packet-filter { acl-number | name acl-name } { inbound | outbound }
undo firewall packet-filter { acl-number | name acl-name } { inbound | outbound }
Default
Packets are not filtered on an interface.
Views
Interface view
Default command level
2: System level
Parameters
acl-number: Specifies a basic ACL number in the range of 2000 to 2999 or an advanced ACL number
in the range of 3000 to 3999.
name acl-name: Specifies the name of a basic or advanced IPv4 ACL; a case-insensitive string of 1
to 63 characters that must start with an English letter a to z or A to Z. To avoid confusion, the word
"all" cannot be used as the ACL name.
inbound: Filters packets received by the interface.
outbound: Filters packets forwarded from the interface.
Usage guidelines
You can apply only one IPv4 ACL in one direction of an interface to filter packets.
Examples
# Apply ACL 2001 to interface GigabitEthernet 3/0/1 to filter outbound packets.
<Sysname> system-view
[Sysname] interface gigabitethernet 3/0/1
[Sysname-GigabitEthernet3/0/1] firewall packet-filter 2001 outbound
366
Advertisement
Table of Contents
