Nortel 4134 Guia Do Utilizador
Configuring policy-specific properties
99
Procedure steps
Step
Action
1
To enter configuration mode, enter:
configure terminal
2
To specify the map name to configure, enter:
firewall <map-name>
3
To configure policies for the firewall, enter:
[no] policy <1-1024> {out|in}
[action {permit | deny | reject}]
[address <ipaddress>]
[service <service-name>]
[protocol <protocol-value>]
[port <port-value>]
[traffic {transit | self}]
[nat-ip <nat-ip-value>]
[port-map <port-map-value>]
[log {enable-log | disable-log}]
—End—
Table 32
Variable definitions
Variable definitions
Variable
Value
<1-1024>
Specifies the map priority, and also uniquely
identifies the map.
identifies the map.
{out|in}
Specifies the traffic direction in which the policy is
applied.
applied.
[action {permit | deny |
reject}]
reject}]
Specifies the action of the policy. If none is specified,
permit is the default action.
permit is the default action.
[address <ipaddress>]
IP address. Can be specified as
<src-ip> <prefix-len> <dst-ip> <prefix-len> OR
<src-start> <src-end> <dst-start> <dst-end> OR
<src-object> <dst-object>
<src-ip> <prefix-len> <dst-ip> <prefix-len> OR
<src-start> <src-end> <dst-start> <dst-end> OR
<src-object> <dst-object>
[service <service-name
>]
>]
Service name, or
any
to specify any service.
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.