Chapter 10 Configuration Commands

Table 27 config Command Summary (continued)

COMMAND

DESCRIPTION

M

config edit anti-spam rule <rule#>

Sets an antispam rule based on the e-mail address on a

R+B

email <1:whitelist2:blacklist>

black or white list filter.

 

active <0:disablenon-zero-

e-mail: should be < 64 chars.

 

number:enable> data <e-mail>

 

 

config edit anti-spam rule <rule#>

Sets an antispam rule based on the IP address and subnet

R+B

ip <1:whitelist2:blacklist>

mask on a black or white list filter.

 

active <0:disablenon-zero-

 

 

number:enable> address <ip-

 

 

address> netmask <mask>

 

 

config edit anti-spam rule <rule#>

Sets an antispam rules based on the MIME type on a black

R+B

mime <1:whitelist2:blacklist>

or white list filter.

 

active <0:disablenon-zero-

<mime-header>: This indicates the MIME type.

 

number:enable> header <mime-

<mime-value>: This is a user-defined tag attached to

 

header> value <mime-value>

emails.

 

config edit anti-spam switch <01>

Enables (1) or disables (0) the antispam function.

R+B

config edit anti-spam threshold

Sets the spam score threshold. If the spam score is higher

R+B

<threshold>

than this threshold, this mail is judged as spam mail.

 

 

<threshold>: A number from 1~100.

 

config edit anti-spam whiteRule

Enables (1) or disables (0) the antispam whitelist filter.

R+B

<01>

 

 

config edit custom-service

Configures the ICMP code. This field is optional for ICMP.

R+B

<entry#> icmp-code <0~255>

The code and type of an ICMP packet together indicate the

 

 

purpose of the packet.

 

 

Use config edit custom-service <entry#>

 

 

icmp-typeto configure the ICMP type first.

 

config edit custom-service

Configures the ICMP type.

R+B

<entry#> icmp-type <0~255>

 

 

config edit custom-service

Configures the IP protocol for a selected custom-service.

R+B

<entry#> ip-protocol

 

 

<icmptcpudptcp/udpuser-

 

 

defined>

 

 

config edit custom-service

Sets the name of the selected custom-service.

R+B

<entry#> name <string>

 

 

config edit custom-service

When the IP protocol is set to TCP and/or UDP, this

R+B

<entry#> range <start-

command configures the port range for a specified custom-

 

port><endport>

service entry.

 

 

For single port configuration, the start port is equal to the

 

 

end port.

 

 

 

 

config edit custom-service

When the IP protocol is set to “user-defined”, this command

R+B

<entry#> user-defined-ip <1~255>

configures the user defined IP protocol.

 

config edit firewall active

Activates or deactivates the saved firewall settings.

R+B

<yesno>

 

 

config edit firewall attack block

Select “yes” to block traffic when it exceeds the tcp-max-

R+B

<yesno>

incomplete threshold.

 

 

Select “no” to delete the oldest half-open session when the

 

 

number of half-opened sessions exceeds the tcp-max-

 

 

incomplete threshold.

 

 

 

 

config edit firewall attack block-

Sets the time a session is blocked once an attack is

R+B

minute <0~255>

detected. This command is only valid when 'block' is set to

 

 

“yes”. The unit is minute.

 

72

 

ZyWALL (ZyNOS) CLI Reference Guide