Manuals / HP / Computer Equipment / Network Hardware

HP TippingPoint Next Generation Firewall manual

Models: TippingPoint Next Generation Firewall

1 252
Download 252 pages 61.66 Kb
Page 153
Image 153

delete dst-zone (exclude allZONENAME) delete user (include allUSERNAME) delete user (exclude allUSERNAME)

delete user-group (include allIN_GRP_NAMEIN_DN_GRP_NAME) delete user-group (exclude allEX_GRP_NAMEEX_DN_GRP_NAME)

Example

NGFW{running-firewall-rule-myrule1}delete application-group NGFW{running-firewall-rule-myrule1}delete schedule exclude myhours1 NGFW{running-firewall-rule-myrule1}delete schedule include all NGFW{running-firewall-rule-myrule1}delete services include port all NGFW{running-firewall-rule-myrule1}delete services include service http NGFW{running-firewall-rule-myrule1}delete services exclude icmp any NGFW{running-firewall-rule-myrule1}delete dst-zone include myzone1 NGFW{running-firewall-rule-myrule1}delete src-zone include myzone1

NGFW{running-firewall-rule-myrule1}delete src-address include ipaddress 192.168.1.0/24

NGFW{running-firewall-rule-myrule1}delete dst-address include ipaddress 192.168.1.0/24

NGFW{running-firewall-rule-myrule1}delete services include port tcp 443 NGFW{running-firewall-rule-myrule1}delete user include all NGFW{running-firewall-rule-myrule1}delete user exclude myuser1 NGFW{running-firewall-rule-myrule1}delete user-group include mygroup

NGFW{running-firewall-rule-myrule1}description

Apply rule description.

Syntax

description TEXT

Example

NGFW{running-firewall-rule-myrule1}description "My Firewall Policy"

NGFW{running-firewall-rule-myrule1}disable

Disable rule.

Syntax

disable

Example

NGFW{running-firewall-rule-myrule1}disable

NGFW{running-firewall-rule-myrule1}dst-address

Apply destination addresses.

Syntax

dst-address (includeexclude) (any4any6) dst-address (includeexclude) group ADDRESSGROUP

dst-address (includeexclude) ipaddress (A.B.C.DX:X::X:X) dst-address (includeexclude) ipaddress (A.B.C.D/MX:X::X:X/M)

dst-address (includeexclude) range ((A.B.C.D A.B.C.D)(X:X::X:X X:X::X:X))

Example

NGFW{running-firewall-rule-myrule1}dst-address exclude ipaddress 192.168.1.1 NGFW{running-firewall-rule-myrule1}dst-address include ipaddress 192.168.1.0/24

NGFW Command Line Interface Reference 145

Page 152 Page 154
Page 153
Image 153
HP TippingPoint Next Generation Firewall manual NGFWrunning-firewall-rule-myrule1disable Disable rule Syntax
Page 152 Page 154