Cisco Cisco Packet Data Gateway (PDG) Manual De Manutenção
Configuration Management
Generally Available 06-30-2010
3-34
firewall priority
This command adds and specifies the priority of a firewall rule definition in the rulebase,
and allows to configure a single or range of ports to be allowed on the server for
auxiliary/data connections.
and allows to configure a single or range of ports to be allowed on the server for
auxiliary/data connections.
CLI (Rulebase Configuration Mode)
firewall priority priority firewall-ruledef ruledef_name { { permit [
trigger open-port { aux_port_number | range start_port_number to
end_port_number } direction { both | reverse | same } ] } | { deny [
charging-action charging_action ] } }
no firewall priority priority
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.
firewall ruledef
This command creates a Firewall Ruledef, and enters the ACS Firewall Ruledef
Configuration Mode.
Configuration Mode.
CLI (ACS Configuration Mode)
[ no ] firewall ruledef ruledef_name [ -noconfirm ]
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.
firewall tcp-syn-flood-intercept
This command enables and configures the TCP intercept parameters to prevent TCP SYN
flooding attacks by intercepting and validating TCP connection requests for DoS protection
mechanism configured with the
flooding attacks by intercepting and validating TCP connection requests for DoS protection
mechanism configured with the
dos-protection
command.
CLI (ACS Configuration Mode)
firewall tcp-syn-flood-intercept { max-attempts max_attempts | mode { none
| { intercept | watch } [ aggressive ] } | retransmit-timeout
retransmit_timeout | watch-timeout intercept_watch_timeout }
default firewall tcp-syn-flood-intercept { max-attempts | mode |
retransmit-timeout | watch-timeout }
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.