Policy cli configuration, Command syntax pattern – Fortinet 100A User Manual
Page 197
Firewall
Policy CLI configuration
FortiGate-100A Administration Guide
01-28007-0068-20041203
197
3
Select the position for the policy.
4
Select OK.
To disable a policy
Disable a policy to temporarily prevent the firewall from selecting the policy. Disabling
a policy does not stop active communications sessions that have been allowed by the
policy.
1
Go to Firewall > Policy.
2
Clear the Enable check box beside the policy you want to disable.
To enable a policy
1
Go to Firewall > Policy.
2
Select Enable.
Policy CLI configuration
The natip keyword for the firewall policy command is used in encrypted
(VPN) policies. A natip address cannot be added using the web-based manager. You
can configure complete firewall policies using from the CLI. See the FortiGate CLI
Reference Guide for descriptions of all firewall policy keywords.
Command syntax pattern
config firewall policy
edit <id_integer>
set <keyword> <variable>
end
Note: This command has more keywords than are listed in this Guide. See the FortiGate CLI
Reference Guide for a complete list of commands and keywords.