Cisco Cisco Packet Data Interworking Function (PDIF) 故障排查指南
ACS Rulebase Configuration Mode Commands
▀ firewall priority
▄ Cisco ASR 5000 Series Command Line Interface Reference
OL-22947-02
firewall priority
This command adds and specifies the priority and type of a firewall ruledef in the rulebase, and allows to configure a
single or range of ports to be allowed on the server for auxiliary/data connections.
single or range of ports to be allowed on the server for auxiliary/data connections.
Important:
In StarOS 8.1 and StarOS 9.0 and later, for Policy-based Firewall-and-NAT configuration, use the
command available in the Firewall-and-NAT Policy Configuration Mode.
Product
FW, NAT
Privilege
Security Administrator, Administrator
Syntax
Removes the specified firewall ruledef priority configuration from the rulebase.
Specifies the firewall ruledef‘s priority in the rulebase.
must be unique, and must be an integer from 1 through 65535.
Specifies the firewall ruledef to add to the rulebase. Optionally, the firewall ruledef type can be specified.
: Firewall Dynamic Ruledef—Predefined ruledef that can be enabled/disabled by the
policy server, and is disabled by default.
: Firewall Static and Dynamic Ruledef—Predefined ruledef that can be
disabled/enabled by the policy server, and is enabled by default.
must be the name of a predefined firewall ruledef, and must be a string
of 1 through 63 characters in length.
Denies packets if the rule is matched. An optional charging action can be specified. If a packet matches the
deny rule, action is taken as configured in the charging action. For firewall ruledefs, only the terminate-flow
action is applicable, if configured in the specified charging action.
deny rule, action is taken as configured in the charging action. For firewall ruledefs, only the terminate-flow
action is applicable, if configured in the specified charging action.
must be a string of 1 through 63 characters in length.