Filter
Top Products
E-DOC-CTC-20061027-0003 v2.0
Firewall Commands
364
firewall rule add
Add a firewall rule.
SYNTAX:
where:
RELATED COMMANDS:
firewall rule add chain = <chain name>
[index = <number>]
[name = <string>]
[clink = <chain name>]
[srcintf [!]= <string>]
[srcip [!]= <string>]
[dstip [!]= <string>]
[serv [!]= <string>]
[log = <{disabled | enabled}>]
[state = <{disabled | enabled}>]
action = <{accept|deny|drop|reset|count|link}>
i
If a value is preceded by a “!”, it means NOT.
For example “srcintf=!wan” means “if the source interface is different from WAN”.
chain The name of the chain which contains the rule. REQUIRED
index The number of the rule in the chain. OPTIONAL
name The name of the new rule. OPTIONAL
clink The name of the chain to be parsed when this rule applies. OPTIONAL
srcintf The name of the source interface expression. OPTIONAL
srcip The name of the source IP expression. OPTIONAL
dstintf The name of the destination interface expression. OPTIONAL
dstip The name of the destination IP expression. OPTIONAL
serv The name of the service expression. OPTIONAL
log Disable or enable logging is done when this rule applies. OPTIONAL
state Enable or disable this rule. OPTIONAL
action The action to be taken when this rule applies ('link' when clink is used). REQUIRED
firewall rule delete Delete a firewall rule.
expr list List the expressions.