Fortinet black logo

CLI Reference

7.4.3
7.6.0
7.4.5
7.4.4
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0

config router access-list

config router access-list

Configure access lists.

config router access-list
    Description: Configure access lists.
    edit <name>
        set comments {string}
        config rule
            Description: Rule.
            edit <id>
                set action [permit|deny]
                set exact-match [enable|disable]
                set prefix {user}
                set wildcard {user}
            next
        end
    next
end

config router access-list

Parameter

Description

Type

Size

Default

comments

Comment.

string

Maximum length: 127

name

Name.

string

Maximum length: 35

config rule

Parameter

Description

Type

Size

Default

action

Permit or deny this IP address and netmask prefix.

option

-

permit

Option

Description

permit

Permit or allow this IP address and netmask prefix.

deny

Deny this IP address and netmask prefix.

exact-match

Enable/disable exact match.

option

-

disable

Option

Description

enable

Enable exact match.

disable

Disable exact match.

id

Rule ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

prefix

IPv4 prefix to define regular filter criteria, such as "any" or subnets.

user

Not Specified

wildcard

Wildcard to define Cisco-style wildcard filter criteria.

user

Not Specified

Previous
Next

config router access-list

config router access-list

Configure access lists.

config router access-list
    Description: Configure access lists.
    edit <name>
        set comments {string}
        config rule
            Description: Rule.
            edit <id>
                set action [permit|deny]
                set exact-match [enable|disable]
                set prefix {user}
                set wildcard {user}
            next
        end
    next
end

config router access-list

Parameter

Description

Type

Size

Default

comments

Comment.

string

Maximum length: 127

name

Name.

string

Maximum length: 35

config rule

Parameter

Description

Type

Size

Default

action

Permit or deny this IP address and netmask prefix.

option

-

permit

Option

Description

permit

Permit or allow this IP address and netmask prefix.

deny

Deny this IP address and netmask prefix.

exact-match

Enable/disable exact match.

option

-

disable

Option

Description

enable

Enable exact match.

disable

Disable exact match.

id

Rule ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

prefix

IPv4 prefix to define regular filter criteria, such as "any" or subnets.

user

Not Specified

wildcard

Wildcard to define Cisco-style wildcard filter criteria.

user

Not Specified

Previous
Next