Chapter 16 Firewall

Table 69 Command Summary: Session Limit (continued)

COMMAND

DESCRIPTION

session-limit append

Enters the session-limit sub-command mode to add a session-limit rule

 

to the end of the session-limit rule list.

 

 

session-limit delete rule_number

Removes a session-limit rule.

session-limit flush

Removes all session-limit rules.

session-limit insert rule_number

Enters the session-limit sub-command mode to add a session-limit rule

 

before the specified rule number.

session-limit move rule_number to

Moves a session-limit to the number that you specified.

rule_number

 

 

 

show session-limit

Shows the session-limit configuration.

show session-limit begin rule_number end

Shows the settings for a range of session-limit rules.

rule_number

 

 

 

show session-limit rule_number

Shows the session-limit rule’s settings.

show session-limit status

Shows the general session-limit settings.

[no] session-limit6 activate

Turns the IPv6 session-limit feature on or off.

session-limit6 limit <0..8192>

Sets the default number of concurrent NAT/firewall IPv6 sessions per

 

host.

session-limit6 rule_number

Enters the IPv6 session-limit sub-command mode to set a session-limit

 

rule.

 

 

[no] activate

Enables the IPv6 session-limit rule. The no command disables the

 

session limit rule.

 

 

[no] address address6_object

Sets the IPv6 source IP address. The no command sets this to any,

 

which means all IP addresses.

[no] description description

Sets a descriptive name (up to 64 printable ASCII characters) for a

 

session-limit rule. The no command removes the descriptive name from

 

the rule.

 

 

exit

Quits the sub-command mode.

[no] limit <0..8192>

Sets the limit for the number of concurrent NAT/firewall IPv6 sessions

 

this rule’s users or addresses can have. 0 means any.

[no] user user_name

Sets an IPv6 session-limit rule for the specified user. The no command

 

resets the user name to the default (any). any means all users.

session-limit6 append

Enters the IPv6 session-limit sub-command mode to add a session-limit

 

rule to the end of the session-limit rule list.

 

 

session-limit6 delete rule_number

Removes an IPv6 session-limit rule.

session-limit6 flush

Removes all IPv6 session-limit rules.

session-limit6 insert rule_number

Enters the IPv6 session-limit sub-command mode to add a session-limit

 

rule before the specified rule number.

session-limit6 move rule_number to

Moves an IPv6 session-limit to the number that you specified.

rule_number

 

 

 

show session-limit6

Shows the IPv6 session-limit configuration.

show session-limit6 begin rule_number end

Shows the settings for a range of IPv6 session-limit rules.

rule_number

 

 

 

show session-limit6 rule_number

Shows the IPv6 session-limit rule’s settings.

show session-limit6 status

Shows the general IPv6 session-limit settings.

140

 

ZyWALL (ZLD) CLI Reference Guide