config policy
Description: Configures firewall policies.
Edit <name>
Set *srcintf <name1>, <name2>, …
Set *dstintf <name1>, <name2>, …
Set *srcaddr <name1>, <name2>, …
Set dnat [enable | disable]
Set *dstaddr <name1>, <name2>, …
Set action [accept | deny]
Set status [enable | disable]
Set *service <name1>, <name2>, …
Set nat [enable | disable]
Next
Delete <name>
Move <name1> [after | before] <name2>
End
Purge
Show
Sample command:
FX201E5919000057 (policy) # show
config firewall policy
edit test1
set srcintf lo
set dstintf any
set srcaddr all
set dnat disable
set dstaddr all
set action accept
set status enable
set service AH
set nat enable
next
edit test2
set srcintf any
set dstintf lan
set srcaddr all
set dnat disable
set dstaddr all
set action accept
set status disable
set service ALL
set nat enable
next
edit all-pass
set srcintf any
set dstintf any
set srcaddr all
set dnat disable
set dstaddr all
set action accept
set status enable
set service ALL
set nat enable
next
end
FX201E5919000057 (policy) # move test2 after all-pass
FX201E5919000057 (policy) <M> # show
config firewall policy
edit test1
set srcintf lo
set dstintf any
set srcaddr all
set dnat disable
set dstaddr all
set action accept
set status enable
set service AH
set nat enable
next
edit all-pass
set srcintf any
set dstintf any
set srcaddr all
set dnat disable
set dstaddr all
set action accept
set status enable
set service ALL
set nat enable
next
edit test2
set srcintf any
set dstintf lan
set srcaddr all
set dnat disable
set dstaddr all
set action accept
set status disable
set service ALL
set nat enable
next
end
FX201E5919000057 (policy) <M> # end