Fortinet black logo

CLI Reference

config firewall policy64

config firewall policy64

Configure IPv6 to IPv4 policies.

config firewall policy64
    Description: Configure IPv6 to IPv4 policies.
    edit <policyid>
        set action [accept|deny]
        set comments {var-string}
        set dstaddr <name1>, <name2>, ...
        set dstintf {string}
        set fixedport [enable|disable]
        set ippool [enable|disable]
        set logtraffic [enable|disable]
        set logtraffic-start [enable|disable]
        set name {string}
        set per-ip-shaper {string}
        set permit-any-host [enable|disable]
        set poolname <name1>, <name2>, ...
        set schedule {string}
        set service <name1>, <name2>, ...
        set srcaddr <name1>, <name2>, ...
        set srcintf {string}
        set status [enable|disable]
        set tcp-mss-receiver {integer}
        set tcp-mss-sender {integer}
        set traffic-shaper {string}
        set traffic-shaper-reverse {string}
        set uuid {uuid}
    next
end

config firewall policy64

Parameter

Description

Type

Size

Default

action

Policy action.

option

-

deny

Option

Description

accept

Action accept.

deny

Action deny.

comments

Comment.

var-string

Maximum length: 1023

dstaddr <name>

Destination address name.

Address name.

string

Maximum length: 79

dstintf

Destination interface name.

string

Maximum length: 35

fixedport

Enable/disable policy fixed port.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

ippool

Enable/disable policy64 IP pool.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

logtraffic

Enable/disable policy log traffic.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

logtraffic-start

Record logs when a session starts and ends.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

name

Policy name.

string

Maximum length: 35

per-ip-shaper

Per-IP traffic shaper.

string

Maximum length: 35

permit-any-host

Enable/disable permit any host in.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

policyid

Policy ID.

integer

Minimum value: 0 Maximum value: 4294967294

0

poolname <name>

Policy IP pool names.

IP pool name.

string

Maximum length: 79

schedule

Schedule name.

string

Maximum length: 35

service <name>

Service name.

Address name.

string

Maximum length: 79

srcaddr <name>

Source address name.

Address name.

string

Maximum length: 79

srcintf

Source interface name.

string

Maximum length: 35

status

Enable/disable policy status.

option

-

enable

Option

Description

enable

Enable setting.

disable

Disable setting.

tcp-mss-receiver

TCP MSS value of receiver.

integer

Minimum value: 0 Maximum value: 65535

0

tcp-mss-sender

TCP MSS value of sender.

integer

Minimum value: 0 Maximum value: 65535

0

traffic-shaper

Traffic shaper.

string

Maximum length: 35

traffic-shaper-reverse

Reverse traffic shaper.

string

Maximum length: 35

uuid

Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

uuid

Not Specified

00000000-0000-0000-0000-000000000000

config firewall policy64

Configure IPv6 to IPv4 policies.

config firewall policy64
    Description: Configure IPv6 to IPv4 policies.
    edit <policyid>
        set action [accept|deny]
        set comments {var-string}
        set dstaddr <name1>, <name2>, ...
        set dstintf {string}
        set fixedport [enable|disable]
        set ippool [enable|disable]
        set logtraffic [enable|disable]
        set logtraffic-start [enable|disable]
        set name {string}
        set per-ip-shaper {string}
        set permit-any-host [enable|disable]
        set poolname <name1>, <name2>, ...
        set schedule {string}
        set service <name1>, <name2>, ...
        set srcaddr <name1>, <name2>, ...
        set srcintf {string}
        set status [enable|disable]
        set tcp-mss-receiver {integer}
        set tcp-mss-sender {integer}
        set traffic-shaper {string}
        set traffic-shaper-reverse {string}
        set uuid {uuid}
    next
end

config firewall policy64

Parameter

Description

Type

Size

Default

action

Policy action.

option

-

deny

Option

Description

accept

Action accept.

deny

Action deny.

comments

Comment.

var-string

Maximum length: 1023

dstaddr <name>

Destination address name.

Address name.

string

Maximum length: 79

dstintf

Destination interface name.

string

Maximum length: 35

fixedport

Enable/disable policy fixed port.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

ippool

Enable/disable policy64 IP pool.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

logtraffic

Enable/disable policy log traffic.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

logtraffic-start

Record logs when a session starts and ends.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

name

Policy name.

string

Maximum length: 35

per-ip-shaper

Per-IP traffic shaper.

string

Maximum length: 35

permit-any-host

Enable/disable permit any host in.

option

-

disable

Option

Description

enable

Enable setting.

disable

Disable setting.

policyid

Policy ID.

integer

Minimum value: 0 Maximum value: 4294967294

0

poolname <name>

Policy IP pool names.

IP pool name.

string

Maximum length: 79

schedule

Schedule name.

string

Maximum length: 35

service <name>

Service name.

Address name.

string

Maximum length: 79

srcaddr <name>

Source address name.

Address name.

string

Maximum length: 79

srcintf

Source interface name.

string

Maximum length: 35

status

Enable/disable policy status.

option

-

enable

Option

Description

enable

Enable setting.

disable

Disable setting.

tcp-mss-receiver

TCP MSS value of receiver.

integer

Minimum value: 0 Maximum value: 65535

0

tcp-mss-sender

TCP MSS value of sender.

integer

Minimum value: 0 Maximum value: 65535

0

traffic-shaper

Traffic shaper.

string

Maximum length: 35

traffic-shaper-reverse

Reverse traffic shaper.

string

Maximum length: 35

uuid

Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

uuid

Not Specified

00000000-0000-0000-0000-000000000000