Fortinet white logo
Fortinet white logo

CLI Reference

config firewall acl

config firewall acl

Note

This command is available for reference model(s) FortiGate 3000D, FortiGate 140E-POE, FortiGate 501E. It is not available for FortiGate VM64, FortiWiFi 61F.

Configure IPv4 access control list.

config firewall acl

Description: Configure IPv4 access control list.

edit <policyid>

set status [enable|disable]

set name {string}

set comments {var-string}

set interface {string}

set srcaddr <name1>, <name2>, ...

set dstaddr <name1>, <name2>, ...

set service <name1>, <name2>, ...

next

end

config firewall acl

Parameter

Description

Type

Size

Default

status

Enable/disable access control list status.

option

-

enable

Option

Description

enable

Enable access control list status.

disable

Disable access control list status.

name

Policy name.

string

Maximum length: 35

comments

Comment.

var-string

Maximum length: 1023

interface

Interface name.

string

Maximum length: 35

srcaddr <name>

Source address name.

Address name.

string

Maximum length: 79

dstaddr <name>

Destination address name.

Address name.

string

Maximum length: 79

service <name>

Service name.

Service name.

string

Maximum length: 79

config firewall acl

config firewall acl

Note

This command is available for reference model(s) FortiGate 3000D, FortiGate 140E-POE, FortiGate 501E. It is not available for FortiGate VM64, FortiWiFi 61F.

Configure IPv4 access control list.

config firewall acl

Description: Configure IPv4 access control list.

edit <policyid>

set status [enable|disable]

set name {string}

set comments {var-string}

set interface {string}

set srcaddr <name1>, <name2>, ...

set dstaddr <name1>, <name2>, ...

set service <name1>, <name2>, ...

next

end

config firewall acl

Parameter

Description

Type

Size

Default

status

Enable/disable access control list status.

option

-

enable

Option

Description

enable

Enable access control list status.

disable

Disable access control list status.

name

Policy name.

string

Maximum length: 35

comments

Comment.

var-string

Maximum length: 1023

interface

Interface name.

string

Maximum length: 35

srcaddr <name>

Source address name.

Address name.

string

Maximum length: 79

dstaddr <name>

Destination address name.

Address name.

string

Maximum length: 79

service <name>

Service name.

Service name.

string

Maximum length: 79