Fortinet black logo

CLI Reference

system firewall service

Use this command to configure the protocols and ports that FortiWeb's built-in stateful firewall uses. You use the service configuration in a firewall policy. For details, see system firewall firewall-policy.

Syntax

config system firewall service

edit "<firewall-service_name>"

set protocol {TCP | UDP | ICMP}

set source-port-min <source-port-min_int>

set source-port-max <source-port-max_int>

set destination-port-min <source-port-min_int>

set destination-port-max <source-port-max_int>

end

Variable Description Default

"<firewall-service_name>"

Enter a name that identifies this firewall service configuration. No default.

protocol {TCP | UDP | ICMP}

Select the protocol for this firewall service configuration.

TCP

source-port-min <source-port-min_int>

Enter the start port in the range of source ports for this firewall service.

0

source-port-max <source-port-max_int>

Enter the end port in the range of source ports for this firewall service 65535

destination-port-min <source-port-min_int>

Enter the start port in the range of destination ports for this firewall service.

0

destination-port-max <source-port-max_int>

Enter the end port in the range of destination ports for this firewall service 65535

Related topics

Use this command to configure the protocols and ports that FortiWeb's built-in stateful firewall uses. You use the service configuration in a firewall policy. For details, see system firewall firewall-policy.

Syntax

config system firewall service

edit "<firewall-service_name>"

set protocol {TCP | UDP | ICMP}

set source-port-min <source-port-min_int>

set source-port-max <source-port-max_int>

set destination-port-min <source-port-min_int>

set destination-port-max <source-port-max_int>

end

Variable Description Default

"<firewall-service_name>"

Enter a name that identifies this firewall service configuration. No default.

protocol {TCP | UDP | ICMP}

Select the protocol for this firewall service configuration.

TCP

source-port-min <source-port-min_int>

Enter the start port in the range of source ports for this firewall service.

0

source-port-max <source-port-max_int>

Enter the end port in the range of source ports for this firewall service 65535

destination-port-min <source-port-min_int>

Enter the start port in the range of destination ports for this firewall service.

0

destination-port-max <source-port-max_int>

Enter the end port in the range of destination ports for this firewall service 65535

Related topics