Example, Response, Firewall deny – Efficient Networks 107-0001-000 User Manual
Page 475: Mgmt class, Input format, Parameters, Firewall deny -9
Chapter 18: Stateful Firewall Commands
Efficient Networks
®
Page 18-9
Example
Example command deletes all firewall rules from the allow rules list.
Response
Command prompt.
firewall deny
Creates a firewall rule that will be added to the firewall deny rules list. To view the
current deny firewall rules, use the
command.
NOTE:
If NAT is enabled on the router, then the outgoing firewall rules should be specified in
terms of the private addresses. However, for inbound rules, the rules would need to
use the router’s WAN address.
Mgmt Class
Security (R/W)
Input Format
firewall deny <protocol | application> [<parameters>]
Parameters
The following parameters specify the <protocol> (-p) or <application> (-a)
characteristics that a packet must have in order to match the firewall rule:
-> firewall delete all allow
-p | tcp | udp | icmp | <protocol number>
a
a
Integer, numerical protocol ID.
The packet must have the specified protocol.
-a imap | telnet | bootp | nntp | rpc | tftp | smtp | dns | ftp |
rexec | rsh | rlogin | syslog | winframe | rdp | http | htps | ntp
| smb | ras | realaudio | netmeeting | aolim| quicktime | cuseme |
netshow | pptp | nfs | nis | traceroute | sqlnet | ipsec
Packets must match the assigned application characteristics.