Manuals / HP / Computer Equipment / Network Hardware

HP TippingPoint Next Generation Firewall manual Schedule includeexclude Schedulename

Models: TippingPoint Next Generation Firewall

1 252
Download 252 pages 61.66 Kb
Page 155
Image 155

Syntax

schedule (includeexclude) SCHEDULENAME

Example

NGFW{running-firewall-rule-myrule1}schedule include myhours1

NGFW{running-firewall-rule-myrule1}schedule exclude myhours1

NGFW{running-firewall-rule-myrule1}services

Apply IP Services.

Syntax

services (includeexclude) (service SERVICENAME) services (includeexclude) (protocol PROTONUM) services (includeexclude) (port tcp PORT [to PORT]) services (includeexclude) (port udp PORT [to PORT]) services (includeexclude) (icmp ICMP-CODENAMES(TYPE [CODE])) services (includeexclude) (icmpv6 ICMP6-CODENAMES(TYPE [CODE]))

Example

NGFW{running-firewall-rule-myrule1}services include protocol 6 NGFW{running-firewall-rule-myrule1}services include port tcp 443 NGFW{running-firewall-rule-myrule1}services include service http NGFW{running-firewall-rule-myrule1}services exclude icmpv6 any

NGFW{running-firewall-rule-myrule1}src-address

Apply source addresses.

Syntax

src-address include (any4any6) src-address include group ADDRESSGROUP

src-address include ipaddress (A.B.C.DX:X::X:X) src-address include ipaddress (A.B.C.D/MX:X::X:X/M)

src-address include range ((A.B.C.D A.B.C.D)(X:X::X:X X:X::X:X)) src-address exclude (any4any6)

src-address exclude group ADDRESSGROUP src-address exclude ipaddress (A.B.C.DX:X::X:X) src-address exclude ipaddress (A.B.C.D/MX:X::X:X/M)

src-address exclude range ((A.B.C.D A.B.C.D)(X:X::X:X X:X::X:X))

Example

NGFW{running-firewall-rule-myrule1}src-address exclude ipaddress 192.168.1.1 NGFW{running-firewall-rule-myrule1}src-address include ipaddress 192.168.1.0/24

NGFW{running-firewall-rule-myrule1}src-address include range 192.168.1.100 192.168.1.200

NGFW{running-firewall-rule-myrule1}src-address include group mygroup1

NGFW{running-firewall-rule-myrule1}src-zone

Apply source security zone.

Syntax

src-zone (includeexclude) ZONENAME

Example

NGFW{running-firewall-rule-myrule1}src-zone include myzone1

NGFW{running-firewall-rule-myrule1}src-zone exclude myzone1

NGFW Command Line Interface Reference 147

Page 154 Page 156
Page 155
Image 155
HP TippingPoint Next Generation Firewall manual Schedule includeexclude Schedulename
Page 154 Page 156