Fortinet 100A Router User Manual


 
Firewall Policy CLI configuration
FortiGate-100A Administration Guide 01-28007-0068-20041203 197
3 Select the position for the policy.
4 Select OK.
To disable a policy
Disable a policy to temporarily prevent the firewall from selecting the policy. Disabling
a policy does not stop active communications sessions that have been allowed by the
policy.
1 Go to Firewall > Policy.
2 Clear the Enable check box beside the policy you want to disable.
To enable a policy
1 Go to Firewall > Policy.
2 Select Enable.
Policy CLI configuration
The natip keyword for the firewall policy command is used in encrypted
(VPN) policies. A natip address cannot be added using the web-based manager. You
can configure complete firewall policies using from the CLI. See the FortiGate CLI
Reference Guide for descriptions of all firewall policy keywords.
Command syntax pattern
config firewall policy
edit <id_integer>
set <keyword> <variable>
end
Note: This command has more keywords than are listed in this Guide. See the FortiGate CLI
Reference Guide for a complete list of commands and keywords.