Raritan Computer EMX2-111 User Manual
Chapter 10: Using the Command Line Interface
263
<insert> is one of the options: insertAbove or insertBelow.
Option
Description
insertAbove
Inserts the new rule above the specified rule
number. Then:
number. Then:
new rule's number = the specified rule number
insertBelow
Inserts the new rule below the specified rule
number. Then:
number. Then:
new rule's number = the specified rule number + 1
<rule_number> is the number of the existing rule which you want to
insert the new rule above or below.
insert the new rule above or below.
Example
The following command adds a new IPv4 access control rule and
specifies its location in the list.
specifies its location in the list.
config:#
security ipAccessControl ipv4 rule add 192.168.84.123/24 accept
insertAbove 5
insertAbove 5
Results:
A new IPv4 firewall control rule is added, allowing all packets from
the IPv4 address 192.168.84.123 to be accepted.
the IPv4 address 192.168.84.123 to be accepted.
The newly-added rule is inserted above the 5th rule. That is, the new
rule becomes the 5th rule, and the original 5th rule becomes the 6th
rule.
rule becomes the 5th rule, and the original 5th rule becomes the 6th
rule.
Modifying a Firewall Rule
Depending on what to modify in an existing rule, the command syntax
varies.
varies.
IPv4 commands
The command syntax to modify an IPv4 rule's IP address and/or
subnet mask:
config:#
security ipAccessControl ipv4 rule modify <rule_number> ipMask
<ip_mask>
<ip_mask>
The command syntax to modify an IPv4 rule's policy: