ZyXEL Communications Internet Security Gateway ZyWALL 100 User Manual

ZyWALL 100 Internet Security Gateway

T

Firewall

Commands

FUNCTION

COMMAND

DESCRIPTION

Config edit firewall set
rule log not-match | both>

This command sets the ZyWALL to log traffic that
matches the rule, doesn't match, both or neither.

Config edit firewall set
rule alert

This command sets whether or not the ZyWALL
sends an alert e-mail when a DOS attack or a
violation of a particular rule occurs.

config edit firewall set
rule srcaddr-single address>

This command sets the rule to have the ZyWALL
check for traffic with this individual source address.

config edit firewall set
rule srcaddr-subnet address>

This command sets a rule to have the ZyWALL
check for traffic from a particular subnet (defined by
IP address and subnet mask).

config edit firewall set
rule srcaddr-range ip address>

This command sets a rule to have the ZyWALL
check for traffic from this range of addresses.

config edit firewall set
rule destaddr-single address>

This command sets the rule to have the ZyWALL
check for traffic with this individual destination
address.

config edit firewall set
rule destaddr-subnet address>

This command sets a rule to have the ZyWALL
check for traffic with a particular subnet destination
(defined by IP address and subnet mask).

config edit firewall set
rule destaddr-range ip address>

This command sets a rule to have the ZyWALL
check for traffic going to this range of addresses.

config edit firewall set
rule TCP destport-single

This command sets a rule to have the ZyWALL
check for TCP traffic with this destination address.
You may repeat this command to enter various,
non-consecutive port numbers.