3-52 WS2000 Wireless Switch System Reference Guide
3.11.1 Network Firewall set Command
set
Network Firewall Commands
Sets firewall parameters. In the Web interface, this functionality is provide by the Network->Firewall screen.
Syntax
set [mode|override|ftp|ip|seq|src|syn|win|spoof|rst|
range|netbios-alg] [enable|disable]
set mime [filter|hdr|len]
set mime filter [enable|disable]
set mime hdr <count>
set mime len <length>
set timeout <time>
set fin <time>
Parameters
mode [enable|disable]
override [enable|disable] Enables or disables subnet access override.
ftp [enable|disable]
ip [enable|disable]
mime
[filter [enable|disable]|
hdr <count>|
len <length>]
seq [enable|disable]
src [enable|disable]
syn [enable|disable]
timeout <time>
win [enable|disable]
spoof [enable|disable]
rst [enable|disable]
range [enable|disable]
fin <time>
netbios-alg
[enable|disable]
Example
admin(network.fw)>show all
Firewall Status
Subnet Access Override
Configurable Firewall Filters
Enables or disables the firewall.
Enables or disables FTP bounce attack check.
Enables or disables IP unaligned timestamp check.
• filter [enable|disable] – Enables or disables MIME flood attack check.
• hdr <count> – Sets the max number of headers as specified in <count>
(12-34463)
• len <length> – Sets the max header length in bytes as specified by <length>
(256-34463)
Enables or disables sequence number prediction check.
Enables or disables source routing check.
Enables or disables SYN flood attack check.
Sets the firewall timeout to <time> minutes (1–90).
Enables or disables Winnuke attack check.
Enables or disables IP Spoofing attack check
Enables or disable reset attack check
Enables or disable sequence out of range check
Sets fin timeout to <time> seconds.
Enables or disables NetBIOS ALG support.
: enable
: disable