Support User Manuals

Enterasys Networks XSR CLI Router User Manual

Open as PDF

of 684

Firewall Show Commands

16-134 Configuring Security

Ip firewall policy dmz private SMTP allow

!

! Policies: between dmz and external

!

Ip firewall policy ANY_EXTERNAL dmz HTTP allow

Ip firewall policy dmz ANY_EXTERNAL HTTP allow

Ip firewall policy ANY_EXTERNAL dmz SMTP allow

Ip firewall policy dmz ANY_EXTERNAL SMTP allow

!

! Policy: Allow any from private to the external

!

Ip firewall private ANY_EXTERNAL any allow

!

ip firewall filter private dmz 17

ip firewall filter private ANY_EXTERNAL 17

ip firewall filter ANY_EXTERNAL dmz 17

displaysconfigurationobjectsassociatedwiththefirewallandvalueswhicharealwaysineffect:

Modified firewall configuration:

ip firewall Network Dmz 220.150.2.16/28 Internal

ip firewall Network Private 220.150.2.32/28 Internal

ip firewall system event-threshold 3

ip firewall policy private dmz http allow

ip firewall policy dmz private http allow

ip firewall policy private dmz smtp allow

ip firewall policy dmz private smtp allow

ip firewall policy any_external dmz http allow

ip firewall policy dmz any_external http allow

ip firewall policy any_external dmz smtp allow

ip firewall policy dmz any_external smtp allow

ip firewall private any_external any allow

ip firewall filter private dmz 17

ip firewall filter private any_external 17

ip firewall filter any_external dmz 17

Values always in effect:

ip firewall udp timeout 3600

ip firewall icmp timeout 1200

ip firewall logging event-threshold 5

The Firewall is currently enabled

show ip firewall filter

Thiscommanddisplaysallconfiguredfirewallfilters.

Syntax

show ip firewall filter [name]

previous next