Cisco Cisco Packet Data Gateway (PDG) Guia De Resolução De Problemas
ACS Configuration Mode Commands
▀ firewall no-ruledef-matches
▄ Cisco ASR 5000 Series Command Line Interface Reference
OL-22947-02
firewall no-ruledef-matches
This command configures the default action for packets when no firewall ruledef matches.
Important:
In StarOS 8.1 and later releases, this command is available in the ACS Rulebase Configuration
Mode.
Product
FW
Privilege
Security Administrator, Administrator
Syntax
Configures the default action for packets with no firewall ruledef match.
Default: uplink direction: permit, downlink direction: deny
Default: uplink direction: permit, downlink direction: deny
Specifies the packet type:
: Downlink packets with no firewall ruledef match.
: Uplink packets with no firewall ruledef match.
Specifies the default action for packets with no firewall ruledef match.
: Permit specified packets.
: Deny specified packets.
Optionally, an ACS charging action can be specified.
must be the name of an ACS charging action, and must be a string of
1 through 63 characters in length.
Usage
Use this command to configure the default action to be taken on packets with no firewall ruledef matches.
If, for deny action, the optional charging action is configured, the action taken depends on what is configured
in the charging action. For the firewall rule, the ―flow action‖, ―billing action‖, and ―content ID‖ of the
charging action will be used to take action. If flow exists, flow statistics are updated.
If, for deny action, the optional charging action is configured, the action taken depends on what is configured
in the charging action. For the firewall rule, the ―flow action‖, ―billing action‖, and ―content ID‖ of the
charging action will be used to take action. If flow exists, flow statistics are updated.
Example