ZyXEL Communications ZLD User Manual
Chapter 16 Firewall
ZyWALL (ZLD) CLI Reference Guide
135
firewall zone_object {zone_object|ZyWALL} delete
<1..5000>
Removes a direction specific through-ZyWALL rule or
to-ZyWALL rule.
to-ZyWALL rule.
<1..5000>
: the index number in a direction specific
firewall rule list.
firewall zone_object {zone_object|ZyWALL} flush
Removes all direction specific through-ZyWALL rule or
to-ZyWALL rules.
to-ZyWALL rules.
firewall zone_object {zone_object|ZyWALL} insert
rule_number
Enters the firewall sub-command mode to add a
direction specific through-ZyWALL rule or to-ZyWALL
rule before the specified rule number. See
direction specific through-ZyWALL rule or to-ZyWALL
rule before the specified rule number. See
for the sub-commands.
firewall zone_object {zone_object|ZyWALL} move
rule_number to rule_number
Moves a direction specific through-ZyWALL rule or to-
ZyWALL rule to the number that you specified.
ZyWALL rule to the number that you specified.
[no] firewall activate
Enables the firewall on the ZyWALL. The
no
command
disables the firewall.
firewall append
Enters the firewall sub-command mode to add a
global firewall rule to the end of the global rule list.
See
global firewall rule to the end of the global rule list.
See
for the sub-commands.
firewall default-rule action {allow | deny | reject} { no
log | log [alert] }
Sets how the firewall handles packets that do not
match any other firewall rule.
match any other firewall rule.
firewall delete rule_number
Removes a firewall rule.
firewall flush
Removes all firewall rules.
firewall insert rule_number
Enters the firewall sub-command mode to add a
firewall rule before the specified rule number. See
firewall rule before the specified rule number. See
for the sub-commands.
firewall move rule_number to rule_number
Moves a firewall rule to the number that you specified.
show connlimit max-per-host
Displays the highest number of sessions that the
ZyWALL will permit a host to have at one time.
ZyWALL will permit a host to have at one time.
show firewall
Displays all firewall settings.
show firewall rule_number
Displays a firewall rule’s settings.
show firewall zone_object {zone_object|ZyWALL}
Displays all firewall rules settings for the specified
packet direction.
packet direction.
show firewall zone_object {zone_object|ZyWALL}
rule_number
Displays a specified firewall rule’s settings for the
specified packet direction.
specified packet direction.
show firewall status
Displays whether or not the firewall is active, whether
or not asymmetrical route topology is allowed, and
the default firewall rule’s configuration.
or not asymmetrical route topology is allowed, and
the default firewall rule’s configuration.
show firewall block_rules
Displays all the firewall rules that deny access.
show firewall any ZyWALL
Shows all the to-ZyWALL firewall rules.
[no] connlimit6 max-per-host <1..8192>
Sets the highest number of IPv6 sessions that the
ZyWALL will permit a host to have at one time. The
ZyWALL will permit a host to have at one time. The
no
command removes the setting.
firewall6 rule_number
Enters the IPv6 firewall sub-command mode to set a
firewall rule. See
firewall rule. See
for the sub-
commands.
firewall6 zone_object {zone_object|ZyWALL} rule_number
Enters the IPv6 firewall sub-command mode to set a
direction specific through-ZyWALL rule or to-ZyWALL
rule. See
direction specific through-ZyWALL rule or to-ZyWALL
rule. See
commands.
Table 66
Command Summary: Firewall (continued)
COMMAND
DESCRIPTION