Fortinet black logo

CLI Reference

Home FortiGate / FortiOS 7.0.9 CLI Reference

config firewall local-in-policy6

7.0.9
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0
Copy Link
Copy Doc ID 3898b1a6-6ab4-11ed-96f0-fa163e15d75b:328620
Download PDF

config firewall local-in-policy6

Configure user defined IPv6 local-in policies.

config firewall local-in-policy6
    Description: Configure user defined IPv6 local-in policies.
    edit <policyid>
        set action [accept|deny]
        set comments {var-string}
        set dstaddr <name1>, <name2>, ...
        set dstaddr-negate [enable|disable]
        set intf {string}
        set policyid {integer}
        set schedule {string}
        set service <name1>, <name2>, ...
        set service-negate [enable|disable]
        set srcaddr <name1>, <name2>, ...
        set srcaddr-negate [enable|disable]
        set status [enable|disable]
        set uuid {uuid}
    next
end

config firewall local-in-policy6

Parameter

Description

Type

Size

Default

action

Action performed on traffic matching the policy.

option

-

deny

Option

Description

accept

Allow local-in traffic matching this policy.

deny

Deny or block local-in traffic matching this policy.

comments

Comment.

var-string

Not Specified

dstaddr <name>

Destination address object from available options.

Address name.

string

Maximum length: 79

dstaddr-negate

When enabled dstaddr specifies what the destination address must NOT be.

option

-

disable

Option

Description

enable

Enable destination address negate.

disable

Disable destination address negate.

intf

Incoming interface name from available options.

string

Not Specified

policyid

User defined local in policy ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

schedule

Schedule object from available options.

string

Not Specified

service <name>

Service object from available options. Separate names with a space.

Service name.

string

Maximum length: 79

service-negate

When enabled service specifies what the service must NOT be.

option

-

disable

Option

Description

enable

Enable negated service match.

disable

Disable negated service match.

srcaddr <name>

Source address object from available options.

Address name.

string

Maximum length: 79

srcaddr-negate

When enabled srcaddr specifies what the source address must NOT be.

option

-

disable

Option

Description

enable

Enable source address negate.

disable

Disable source address negate.

status

Enable/disable this local-in policy.

option

-

enable

Option

Description

enable

Enable this local-in policy.

disable

Disable this local-in policy.

uuid

Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

uuid

Not Specified

00000000-0000-0000-0000-000000000000
Previous
Next

config firewall local-in-policy6

Configure user defined IPv6 local-in policies.

config firewall local-in-policy6
    Description: Configure user defined IPv6 local-in policies.
    edit <policyid>
        set action [accept|deny]
        set comments {var-string}
        set dstaddr <name1>, <name2>, ...
        set dstaddr-negate [enable|disable]
        set intf {string}
        set policyid {integer}
        set schedule {string}
        set service <name1>, <name2>, ...
        set service-negate [enable|disable]
        set srcaddr <name1>, <name2>, ...
        set srcaddr-negate [enable|disable]
        set status [enable|disable]
        set uuid {uuid}
    next
end

config firewall local-in-policy6

Parameter

Description

Type

Size

Default

action

Action performed on traffic matching the policy.

option

-

deny

Option

Description

accept

Allow local-in traffic matching this policy.

deny

Deny or block local-in traffic matching this policy.

comments

Comment.

var-string

Not Specified

dstaddr <name>

Destination address object from available options.

Address name.

string

Maximum length: 79

dstaddr-negate

When enabled dstaddr specifies what the destination address must NOT be.

option

-

disable

Option

Description

enable

Enable destination address negate.

disable

Disable destination address negate.

intf

Incoming interface name from available options.

string

Not Specified

policyid

User defined local in policy ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

schedule

Schedule object from available options.

string

Not Specified

service <name>

Service object from available options. Separate names with a space.

Service name.

string

Maximum length: 79

service-negate

When enabled service specifies what the service must NOT be.

option

-

disable

Option

Description

enable

Enable negated service match.

disable

Disable negated service match.

srcaddr <name>

Source address object from available options.

Address name.

string

Maximum length: 79

srcaddr-negate

When enabled srcaddr specifies what the source address must NOT be.

option

-

disable

Option

Description

enable

Enable source address negate.

disable

Disable source address negate.

status

Enable/disable this local-in policy.

option

-

enable

Option

Description

enable

Enable this local-in policy.

disable

Disable this local-in policy.

uuid

Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

uuid

Not Specified

00000000-0000-0000-0000-000000000000
Previous
Next