config firewall interface-policy
Configure IPv4 interface policies.
config firewall interface-policy Description: Configure IPv4 interface policies. edit <policyid> set application-list {string} set application-list-status [enable|disable] set av-profile {string} set av-profile-status [enable|disable] set comments {var-string} set dlp-profile {string} set dlp-profile-status [enable|disable] set dsri [enable|disable] set dstaddr <name1>, <name2>, ... set emailfilter-profile {string} set emailfilter-profile-status [enable|disable] set interface {string} set ips-sensor {string} set ips-sensor-status [enable|disable] set logtraffic [all|utm|...] set service <name1>, <name2>, ... set srcaddr <name1>, <name2>, ... set status [enable|disable] set webfilter-profile {string} set webfilter-profile-status [enable|disable] next end
config firewall interface-policy
Parameter |
Description |
Type |
Size |
Default |
||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
application-list |
Application list name. |
string |
Maximum length: 35 |
|
||||||||
application-list-status |
Enable/disable application control. |
option |
- |
disable |
||||||||
|
|
|||||||||||
av-profile |
Antivirus profile. |
string |
Maximum length: 35 |
|
||||||||
av-profile-status |
Enable/disable antivirus. |
option |
- |
disable |
||||||||
|
|
|||||||||||
comments |
Comments. |
var-string |
Maximum length: 1023 |
|
||||||||
dlp-profile |
DLP profile name. |
string |
Maximum length: 35 |
|
||||||||
dlp-profile-status |
Enable/disable DLP. |
option |
- |
disable |
||||||||
|
|
|||||||||||
dsri |
Enable/disable DSRI. |
option |
- |
disable |
||||||||
|
|
|||||||||||
dstaddr |
Address object to limit traffic monitoring to network traffic sent to the specified address or range. Address name. |
string |
Maximum length: 79 |
|
||||||||
emailfilter-profile |
Email filter profile. |
string |
Maximum length: 35 |
|
||||||||
emailfilter-profile-status |
Enable/disable email filter. |
option |
- |
disable |
||||||||
|
|
|||||||||||
interface |
Monitored interface name from available interfaces. |
string |
Maximum length: 35 |
|
||||||||
ips-sensor |
IPS sensor name. |
string |
Maximum length: 35 |
|
||||||||
ips-sensor-status |
Enable/disable IPS. |
option |
- |
disable |
||||||||
|
|
|||||||||||
logtraffic |
Logging type to be used in this policy (Options: all | utm | disable, Default: utm). |
option |
- |
utm |
||||||||
|
|
|||||||||||
policyid |
Policy ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||
service |
Service object from available options. Service name. |
string |
Maximum length: 79 |
|
||||||||
srcaddr |
Address object to limit traffic monitoring to network traffic sent from the specified address or range. Address name. |
string |
Maximum length: 79 |
|
||||||||
status |
Enable/disable this policy. |
option |
- |
enable |
||||||||
|
|
|||||||||||
webfilter-profile |
Web filter profile. |
string |
Maximum length: 35 |
|
||||||||
webfilter-profile-status |
Enable/disable web filtering. |
option |
- |
disable |
||||||||
|
|