Support User Manuals

Enterasys Networks XSR CLI Router User Manual

Open as PDF

of 684

Firewall Feature Set Commands

XSR CLI Reference Guide 16-125

Example

ThefollowingpolicyallowsFTPaccesstoahost.Beawarethatthehost’ssourceIPaddresswillbe

authenticatedagainstthegroupsales‐group.

XSR(config)#ip firewall network sales-host 192.168.100.2 mask 255.255.255.255

internal

XSR(config)#ip firewall policy allow-eng-ftp ANY_INTERNAL sales-host ftp allow-

auth sales-group

ip firewall redirectURL

Thiscommandredirectsauser’sHTTPaccesstothespecifiedre‐directURLpageifthatuser

attemptstoaccessaURLnotpermittedbythewhiteURLlist.Ifre‐directURLisnotconfigured,

theXSRgeneratesadefaultblockedpage.

Syntax

ip firewall redirectURL redirect_url_string

Syntax of the “no” Form

ThenoformofthiscommandremovesapreviouslyconfiguredredirectURL:

no ip firewall redirectURL

Mode

Globalconfiguration:XSR(config)#

Example

ThefollowingexampleredirectsausertothespecifedURLsite:

XSR(config)#ip firewall redirecturl www.companyXYZ.com.

ip firewall rpc timeout

ThiscommandsetstheidlesessiontimeoutonpacketinspectionforRemoteProcedureCall(RPC)

‐basedapplications.ThisApplicationLevelGateway(ALG)supportstwotypesofRPCs‐SUN

(usedbymostUNIXsystems)andMicrosoft.IftheRPC‐basedsessionisidleforthespecified

period,itwillbeshut

down.

Syntax

ip firewall rpc {microsoft-rpc | sun-rpc} timeout number

Note: This command takes effect immediately.

redirect_url_string

AvalidURLstringof upto63characters.

microsoft-rpc

ALGpacketinspectionforMicrosofttraffic.

sun-rpc

ALGpacketinspectionforSUNtraffic.

number

Idlesessiontimeout,rangingfrom5to86400seconds.

previous next