Chapter 16 Firewall
The following command displays the default IPv6 firewall rule that applies to the WAN to ZyWALL packet direction. The firewall rule number is in the rule’s priority number in the global rule list.
Router(config)# show firewall6 WAN ZyWALL firewall rule: 13
description:
user: any, schedule: none
from: WAN, to: ZyWALL
source IP: any, source port: any
destination IP: any, service: Default_Allow_v6_WAN_To_ZyWALL
log: no, action: allow, status: yes
16.3 Session Limit Commands
The following table identifies the values required for many of these commands. Other input values are discussed with the corresponding commands.
Table 68 Input Values for General Session Limit Commands
LABEL | DESCRIPTION |
rule_number | The priority number of a session limit rule, 1 - 1000. |
|
|
address_object | The name of the IP address (group) object. You may use |
| characters, underscores (_), or dashes |
| number. This value is |
address6_object | The name of the IPv6 address (group) object. You may use |
| characters, underscores(_), or dashes |
| number. This value is |
user_name | The name of a user (group). You may use |
| (_), or dashes |
| sensitive. |
The following table describes the
Table 69 Command Summary: Session Limit
COMMAND | DESCRIPTION |
[no] | Turns the |
Sets the default number of concurrent NAT/firewall sessions per host. | |
Enters the | |
[no] activate | Enables the |
| limit rule. |
[no] address address_object | Sets the source IP address. The no command sets this to any, which |
| means all IP addresses. |
[no] description description | Sets a descriptive name (up to 64 printable ASCII characters) for a |
| |
| from the rule. |
exit | Quits the |
[no] limit <0..8192> | Sets the limit for the number of concurrent NAT/firewall sessions this |
| rule’s users or addresses can have. 0 means any. |
|
|
[no] user user_name | Sets a |
| the user name to the default (any). any means all users. |
| 139 |
ZyWALL (ZLD) CLI Reference Guide | |
|
|