Filter
Top Products
Chapter 10 Configuration Commands
ZyWALL (ZyNOS) CLI Reference Guide
82
10.3.3 Custom Service Example
This example shows how to configure a custom service named “PERMITTED_ICMP”, using
ICMP protocol, of type 3 and code 1.
The following table describes the fields displayed using the config display custom-
service command in the example above.
ANTI_SPAM ACL rule number Shows the index number of a rule in the set. A set may only
have two rules.
ANTI_SPAM ACL rule Shows whether a rule in the set is based on a white or blacklist.
ANTI_SPAM Index XX, flags XX,
IP: XXX.XXX.XXX.XXX, Netmask:
XXX.XXX.XXX.XXX
Shows the email addresses, IP address/subnet masks, or
MIME types/values that are included in the whitelist and
blacklists of each rule. This example shows an IP address/
subnet mask based rule.
The index shows the index number of an email address, IP
address/subnet mask, or MIME type/value entry.
A “0” flag indicates the rule is disabled, a non-zero flag shows it
is enabled.
Table 32 config display set <entry#>
LABEL DESCRIPTION
ras> config edit custom-service 1 name PERMITTED_ICMP
ras> config edit custom-service 1 ip-protocol icmp
ras> config edit custom-service 1 type 3
ras> config edit custom-service 1 code 1
ras> config save custom-service 1
ras> config display custom-service 1
Custom Service #1:
Custom Service Name: PERMITTED_ICMP
Custom Service Type: ICMP
Custom Service ICMP Type: 3
Custom Service ICMP Code: 1
Table 33 config display custom-service
LABEL DESCRIPTION
Custom Service Name Shows the name for the service you have configured.
Custom Service Type Shows the TCP/IP protocol selected for this service.
Custom Service ICMP Type Shows the ICMP type. ICMP messages are assigned a type to
indicate their use. For example, destination unreachable ICMP
packets are identified by the value 3 in the type field.
Custom Service ICMP Code Shows the ICMP code. The ICMP type can be further specified
by the ICMP code. For example, type 3, code 3 ICMP packets
indicate the host is unreachable.