Vai al contenuto

Firewall rules syntax

Firewall IP Rule Synopsis

[@index ] {pass | block} [return-rst | return-icmp[-as-dest](return_value )] {in | out} [log [first]] [limit [!] limit_value /unit burst [burst_value ] [quick] [on [!] interface [+]] [phys interface [+]] [pktflags pktflags_value [/mask ]] [tos [tos_value ][/mask ]] [ttl ttl_value ] [proto [proto_value ]] address_scope [icmp-type icmp_value ] [flags flags_value [/mask ]] [with [no] {frag|ipopts}] [keep state [limited]| keep ifstate | keep ipsecstate] [head | group value ] [userdef id [paramstring ]]

IP Filter Address Scope

{all | from {[!] any|me|ip_address [/mask ]} [port {op } {port_value }] to {[!] any|me|ip_address [/mask ]} [port {op } {port_value }]}}

Firewall MAC Rule Synopsis

[@index ] {pass | block {in | out} [log [first]] [limit [!] limit_value /unit burst {burst_value ] [quick] [on [!] [phys interface [+]] address_scope [mac-type mac_type_value ] [802_2] [802_2-dsap [!] value ] [802_2-ssap [!] value ] [802_2-snap-vendor [!] value ] [802_2-snap-type [!] value ] [head | group value ] [userdef id [paramstring ]]

MAC Filter Address Scope

{all | from {[!] any|me|mac_address [/mask ]} to {[!] any|me|mac_address [/mask ]}}

Scarica PDF

Scarica questa pagina