3 firewall management via the cli, Tion 31.3 – Westermo RedFox Series User Manual

Page 733

Advertising
background image

Westermo OS Management Guide

Version 4.17.0-0

31.3

Firewall Management via the CLI

Command

Default

Section

Configure Firewall Settings
[no] firewall

Disabled

Section 31.3.1

[no] enable

Enabled

Section 31.3.2

[no] filter [pos <NUM>] <allow|deny>

Section 31.3.3

[in <IFNAME>] [out <IFNAME>]
[src <ADDR[/LEN]>] [dst <ADDR[/LEN]>]
[dport <RANGE>] [proto <NAME|NUM>]
[passive] [log]

[no] modify [pos <NUM>]

Section 31.3.4

[match [in <IFNAME>] [out <IFNAME>]

[src <ADDR[/LEN]>] [dst <ADDR[/LEN]>]
[proto <NAME|NUM>] [dport <RANGE>] ]

set dscp <NUM> [adjust-prio] [passive]

[no] nat [<NUM>] type <NAPT|1-TO-1>

Section 31.3.5

[in <IFNAME>] [out <IFNAME>]
[src <ADDR[/LEN]>] [dst <ADDR[/LEN]>]
[to-dst <ADDR[/LEN]>] [addfilter]
[noarp] [passive] [log]

[no] port-forward in <IFNAME>:<PORTRANGE>

Section 31.3.6

[src <ADDR/LEN>]
dst <ADDR>[:PORTRANGE]
[proto <tcp|udp>] [passive] [log]

[no] alg <ftp|tftp|sip|irc|h323|pptp>

Disabled

Section 31.3.7

[no] spi

Disabled

Section 31.3.8

policy [forward|input] <deny|allow>

Deny

Section 31.3.9

move [filter|modify|nat|port-forward] <FROM> <TO>

Section 31.3.10

[no] passive [filter|modify|nat|port-forward] <POS>

Section 31.3.11

[no] log limit ( none |

Section 31.3.12

<entries>/(second|minute|hour|day) )

[no] log [filter|nat|port-forward] <POS>

Section 31.3.12

View Firewall Status
show firewall

Section 31.3.13

➞ 2015 Westermo Teleindustri AB

733

Advertising
This manual is related to the following products:
See also other documents in the category Westermo Equipment: