Table of Contents
Advertisement
This example shows how to use Table
source traffic from IP address 1.2.3.4. If mask 32 is not specified as shown, a default mask of 48 bits
(IP address + port) would be applied:
C3(su)->set policy rule 1 ipsourcesocket 1.2.3.4 mask 32 drop
clear policy rule
Use this command to delete policy classification rule entries.
Syntax
This command has two forms of syntax—one to clear an admin rule (for policy ID 0), and the other
to clear a classification rule.
clear policy rule admin-profile {vlantag data [mask mask]
clear policy rule profile-index {all-pid-entries | {ether | ipproto | ipdestsocket
| ipsourcesocket | iptos | macdest | macsource | tcpdestport | tcpsourceport |
udpdestport | udpsourceport}}
Parameters
The following parameters apply to deleting an admin rule.
admin‐profile
vlantag data
mask mask
The following parameters apply to deleting a classification rule.
profile‐index
all‐pid‐entries
ether
ipproto
ipdestsocket
ipsourcesocket
iptos
macdest
macsource
tcpdestport
tcpsourceport
udpdestport
udpsourceport
11‐3 to assign a rule to policy profile 1 that will drop IP
Specifies that the rule to be deleted is an admin rule for policy ID 0.
Deletes the rule based on VLAN tag specified by data. Value of data can
range from 1 to 4094 or 0xFFF.
(Optional) Specifies the number of significant bits to match, dependent
on the data value entered. Value of mask can range from 1 to 12.
Refer to Table
11‐3 for valid values for each classification type and data
value.
Specifies a policy profile for which to delete classification rules. Valid
profile‐index values are 1 ‐ 255.
Deletes all entries associated with the specified policy profile.
Deletes associated Ethernet II classification rule.
Deletes associated IP protocol classification rule.
Deletes associated IP destination classification rule.
Deletes associated IP source classification rule.
Deletes associated IP Type of Service classification rule.
Deletes associated MAC destination address classification rule.
Deletes associated MAC source address classification rule.
Deletes associated TCP destination port classification rule.
Deletes associated TCP source port classification rule.
Deletes associated UDP destination port classification rule.
Deletes associated UDP source port classification rule.
clear policy rule
SecureStack C3 Configuration Guide 11-13
- Quick Links:
- Set Ip Address
Hide quick links:
Advertisement
Table of Contents
Need help?
Do you have a question about the SECURESTACK C3 and is the answer not in the manual?
Questions and answers