ZyXEL Communications Internet Security Gateway ZyWALL 2 Series User Manual

ZyWALL 2 Series User’s Guide

Firewall Commands

L-5

Chart L-1 Firewall Commands

FUNCTION

COMMAND

DESCRIPTION

Config edit firewall set
rule protocol protocol value >

This command sets the protocol specification
number made in this rule for ICMP.

Config edit firewall set
rule log not-match | both>

This command sets the ZyWALL to log traffic that
matches the rule, doesn't match, both or neither.

Config edit firewall set
rule alert

This command sets whether or not the ZyWALL
sends an alert e-mail when a DOS attack or a
violation of a particular rule occurs.

config edit firewall set
rule srcaddr-single address>

This command sets the rule to have the ZyWALL
check for traffic with this individual source address.

config edit firewall set
rule srcaddr-subnet address>

This command sets a rule to have the ZyWALL
check for traffic from a particular subnet (defined by
IP address and subnet mask).

config edit firewall set
rule srcaddr-range ip address>

This command sets a rule to have the ZyWALL
check for traffic from this range of addresses.

config edit firewall set
rule destaddr-single address>

This command sets the rule to have the ZyWALL
check for traffic with this individual destination
address.

config edit firewall set
rule destaddr-subnet address>

This command sets a rule to have the ZyWALL
check for traffic with a particular subnet destination
(defined by IP address and subnet mask).

config edit firewall set
rule destaddr-range ip address>

This command sets a rule to have the ZyWALL
check for traffic going to this range of addresses.