Ulterius Technologies LLC FDN40 사용자 설명서
CHAPTER 9: FIREWALL
Configuration User Manual
196
© Ulterius Technologies, LLC 2016. Confidential & Proprietary.
9.2.3
Configuring Firewall Access List
Firewall Access List is a policy which is based on the direction of the traffic,
the firewall filter and the order of precedence to allow or deny the traffic. This
section describes the steps involved in configuring firewall access-list.
the firewall filter and the order of precedence to allow or deny the traffic. This
section describes the steps involved in configuring firewall access-list.
9.2.3.1
CLI Configuration
To create an access-list:
1. Enter the global configuration mode.
1. Enter the global configuration mode.
UltOs# configure terminal
2. Enter firewall mode
UltOs(config)# firewall
3. Create an access list policy to allow traffic from H1 to H2.
UltOs(config-firewall)# access-list acl1 lan wan filter1 permit 8
To view the configured firewall access list
UltOs# show firewall access-lists
Firewall Access Lists
ACL Name From To Filter
Combination Action Prio- Fragmented
Combination Action Prio- Fragmented
Zone Zone
rity Packet
rity Packet
-------------------- ------ ------ --------------
------- ------ ----- ----------
------- ------ ----- ----------
acl1 LAN WAN filter1
permit 8 permit
permit 8 permit
Def_HTTPS_ACL_LAN_Local LAN Local
Def_HTTPS_Filter permit 9987 permit
Def_HTTPS_Filter permit 9987 permit
Def_HTTP_ACL_LAN_Local LAN Local
Def_HTTP_Filter permit 9984 permit
Def_HTTP_Filter permit 9984 permit
Def_SNMP_ACL_LAN_Local LAN Local
Def_SNMP_Filter permit 9980 permit
Def_SNMP_Filter permit 9980 permit
Def_SNMP_Trap_ACL_LAN_LocalLAN Local
Def_SNMP_Trap_Filter permit 9976 permit
Def_SNMP_Trap_Filter permit 9976 permit
Def_SSH_ACL_LAN_Local LAN Local Def_SSH_Filter
permit 9991 permit
permit 9991 permit
Def_TELNET_ACL_LAN_Local LAN Local
Def_TELNET_Filter permit 9995 permit
Def_TELNET_Filter permit 9995 permit
Def_AH_ACL_WAN_Local WAN Local Def_AH_Filter
permit 9967 permit
permit 9967 permit
Def_ESP_ACL_WAN_Local WAN Local Def_ESP_Filter
permit 9969 permit
permit 9969 permit
Def_HTTPS_ACL_WAN_Local WAN Local
Def_HTTPS_Filter permit 9989 permit
Def_HTTPS_Filter permit 9989 permit