Section 31.3.1, Section 31.3.2 – Westermo RedFox Series User Manual
Page 734
Westermo OS Management Guide
Version 4.17.0-0
31.3.1
Managing the Firewall
Syntax [no] firewall
Context
context
Usage Enter the
context. This will enable the firewall (un-
less it is already enabled).
Use ”no firewall” to disable the firewall, and to delete all existing NAT,
Port Forwarding, Packet filter (allow/deny), and ALG helper rules.
Use ”show firewall” to show the firewall configuration. If the firewall is
enabled, the list of currently configured Packet filtering, Modify, NAT and
Port forwarding rules are presented. Also available as ”show” command
within the
context.
Default values Disabled.
31.3.2
Enable Packet Filter Rules
Syntax [no] enable
Context
context
Usage Enable/disable packet filtering. This setting affects the activation of packet
filtering (allow/deny) rules, and the activation of the default policies. Modify,
NAT, Port Forwarding, and ALG helper rules are unaffected (they are always
enabled).
Use ”enable” to (re)activate all configured packet filtering (allow/deny) rules
and the configured default policies for the input and forward filter.
Use ”no enable” to deactivate all the configured packet filtering (allow/deny)
rules. Default forward policy will be accept and default input policy will be
drop. ICMP will be allowed on the ingress filter.
Use ”show enable” to show whether the configured packet filters are en-
abled or disabled.
It is also possible to activate/deactivate individual allow/deny rules (as well
as NAT and port forwarding rules), see
734
➞ 2015 Westermo Teleindustri AB