Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.2.1
Copy Link

Configure IPv6 firewall addresses.

  config firewall address6
      Description: Configure IPv6 firewall addresses.
      edit <name>
          set uuid {uuid}
          set type [ipprefix|iprange|...]
          set sdn {string}
          set ip6 {ipv6-network}
          set start-ip {ipv6-address}
          set end-ip {ipv6-address}
          set fqdn {string}
          set cache-ttl {integer}
          set visibility [enable|disable]
          set color {integer}
          set obj-id {var-string}
          config list
              Description: IP address list.
              edit <ip>
                  set obj-id {string}
                  set net-id {string}
              next
          end
          config tagging
              Description: Config object tagging
              edit <name>
                  set category {string}
                  set tags <name1>, <name2>, ...
              next
          end
          set comment {var-string}
          set template {string}
          config subnet-segment
              Description: IPv6 subnet segments.
              edit <name>
                  set type [any|specific]
                  set value {string}
              next
          end
          set host-type [any|specific]
          set host {ipv6-address}
      next
  end

config firewall address6

Parameter Name Description Type Size
uuid Universally Unique Identifier (UUID; automatically assigned but can be manually reset). uuid Not Specified
type Type of IPv6 address object (default = ipprefix).
ipprefix: Uses the IP prefix to define a range of IPv6 addresses.
iprange: Range of IPv6 addresses between two specified addresses (inclusive).
fqdn: Fully qualified domain name.
dynamic: Dynamic address object for SDN.
template: Template.
option -
sdn SDN. string Maximum length: 35
ip6 IPv6 address prefix (format: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx). ipv6-network Not Specified
start-ip First IP address (inclusive) in the range for the address (format: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx). ipv6-address Not Specified
end-ip Final IP address (inclusive) in the range for the address (format: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx). ipv6-address Not Specified
fqdn Fully qualified domain name. string Maximum length: 255
cache-ttl Minimal TTL of individual IPv6 addresses in FQDN cache. integer Minimum value: 0 Maximum value: 86400
visibility Enable/disable the visibility of the object in the GUI.
enable: Show in address6 selection.
disable: Hide from address6 selection.
option -
color Integer value to determine the color of the icon in the GUI (range 1 to 32, default = 0, which sets the value to 1). integer Minimum value: 0 Maximum value: 32
obj-id Object ID for NSX. var-string Maximum length: 255
comment Comment. var-string Maximum length: 255
template IPv6 address template. string Maximum length: 63
host-type Host type.
any: Wildcard.
specific: Specific host address.
option -
host Host Address. ipv6-address Not Specified

config list

Parameter Name Description Type Size
obj-id Object ID. string Maximum length: 127
net-id Network ID. string Maximum length: 127

config tagging

Parameter Name Description Type Size
category Tag category. string Maximum length: 63
tags <name> Tags.
Tag name.
string Maximum length: 79

config subnet-segment

Parameter Name Description Type Size
type Subnet segment type.
any: Wildcard.
specific: Specific subnet segment address.
option -
value Subnet segment value. string Maximum length: 35

Configure IPv6 firewall addresses.

  config firewall address6
      Description: Configure IPv6 firewall addresses.
      edit <name>
          set uuid {uuid}
          set type [ipprefix|iprange|...]
          set sdn {string}
          set ip6 {ipv6-network}
          set start-ip {ipv6-address}
          set end-ip {ipv6-address}
          set fqdn {string}
          set cache-ttl {integer}
          set visibility [enable|disable]
          set color {integer}
          set obj-id {var-string}
          config list
              Description: IP address list.
              edit <ip>
                  set obj-id {string}
                  set net-id {string}
              next
          end
          config tagging
              Description: Config object tagging
              edit <name>
                  set category {string}
                  set tags <name1>, <name2>, ...
              next
          end
          set comment {var-string}
          set template {string}
          config subnet-segment
              Description: IPv6 subnet segments.
              edit <name>
                  set type [any|specific]
                  set value {string}
              next
          end
          set host-type [any|specific]
          set host {ipv6-address}
      next
  end

config firewall address6

Parameter Name Description Type Size
uuid Universally Unique Identifier (UUID; automatically assigned but can be manually reset). uuid Not Specified
type Type of IPv6 address object (default = ipprefix).
ipprefix: Uses the IP prefix to define a range of IPv6 addresses.
iprange: Range of IPv6 addresses between two specified addresses (inclusive).
fqdn: Fully qualified domain name.
dynamic: Dynamic address object for SDN.
template: Template.
option -
sdn SDN. string Maximum length: 35
ip6 IPv6 address prefix (format: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx). ipv6-network Not Specified
start-ip First IP address (inclusive) in the range for the address (format: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx). ipv6-address Not Specified
end-ip Final IP address (inclusive) in the range for the address (format: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx). ipv6-address Not Specified
fqdn Fully qualified domain name. string Maximum length: 255
cache-ttl Minimal TTL of individual IPv6 addresses in FQDN cache. integer Minimum value: 0 Maximum value: 86400
visibility Enable/disable the visibility of the object in the GUI.
enable: Show in address6 selection.
disable: Hide from address6 selection.
option -
color Integer value to determine the color of the icon in the GUI (range 1 to 32, default = 0, which sets the value to 1). integer Minimum value: 0 Maximum value: 32
obj-id Object ID for NSX. var-string Maximum length: 255
comment Comment. var-string Maximum length: 255
template IPv6 address template. string Maximum length: 63
host-type Host type.
any: Wildcard.
specific: Specific host address.
option -
host Host Address. ipv6-address Not Specified

config list

Parameter Name Description Type Size
obj-id Object ID. string Maximum length: 127
net-id Network ID. string Maximum length: 127

config tagging

Parameter Name Description Type Size
category Tag category. string Maximum length: 63
tags <name> Tags.
Tag name.
string Maximum length: 79

config subnet-segment

Parameter Name Description Type Size
type Subnet segment type.
any: Wildcard.
specific: Specific subnet segment address.
option -
value Subnet segment value. string Maximum length: 35