ZyXEL Communications Internet Security Gateway ZyWALL 2 Series User Manual

ZyWALL 2 User’s Guide

L-4

Firewall

Commands

Chart L-1 Firewall Commands

FUNCTION

COMMAND

DESCRIPTION

Config edit firewall set
default-permit

This command sets whether a packet is dropped or
allowed through, when it does not meet a rule within
the set.

Config edit firewall set
icmp-timeout

This command sets the time period to allow an
ICMP session to wait for the ICMP response.

Config edit firewall set
udp-idle-timeout

This command sets how long a UDP connection is
allowed to remain inactive before the ZyWALL
considers the connection closed.

Config edit firewall set
connection-timeout

This command sets how long ZyWALL waits for a
TCP session to be established before dropping the
session.

Config edit firewall set
fin-wait-timeout

This command sets how long the ZyWALL leaves a
TCP session open after the firewall detects a FIN-
exchange (indicating the end of the TCP session).

Config edit firewall set
tcp-idle-timeout

This command sets how long ZyWALL lets an
inactive TCP connection remain open before
considering it closed.

Config edit firewall set
log

This command sets whether or not the ZyWALL
creates logs for packets that match the firewall’s
default rule set.

R

R

u

u

l

l

e

e

s

s

Config edit firewall set
rule permit block>

This command sets whether packets that match this
rule are dropped or allowed through.

Config edit firewall set

rule active

This command sets whether a rule is enabled or
not.