CLI Guide - WatchGuard Technologies

More documents

Recommendations

Info

CHAPTER 3: Configuration Mode Commands destination address groups to which this policy will be applied. This argument records the interface this policy will apply to. [-position ] This argument records which numbered location this policy occupies in the policy table. [-firewall ] This argument allows you to specify which firewall option to apply. [] These arguments allow you to combine various preexisting actions in this one policy, including: -service: Enter the name of a service group after this argument. -tenant: Enter the name of a tenant object after this argument. -nat: Enter the name of a NAT action after this argument. -qos: Enter the name of a QoS action after this argument. -schedule: Enter the name of a schedule after this argument. -ipsec: Enter the name of an IPSec action after this argument. [{-tosF | -tosR} ] This argument records the TOS marking direction and marking bit. “bbbbbb” represents the six bit 58 WatchGuard Vclass 5.1
Top-level configuration mode commands positions that you can choose from. You pick a location and enter a “1” to mark that bit. [-log_per_policy [enable|disable] ] This argument allows you to enable or disable logging on a per-policy basis. [-icmp_error_handling_per_policy [[global | all] | [[no] fragmentation_required] [[no] time_exceeded] [[no] network_unreachable] [[no] host_unreachable] [[no] port_unreachable] ] This argument allows you to implement ICMP error handling per policy, and specify error handling options. [-mss_adjustment_per_policy [auto| limit_to |disable|use_global]] This argument allows you to specify a per-policy TCP Maximum Segment Size. See “mss_adjustment” on page 112 for more information on these settings. To use the global settings, use the argument use_global. Examples WG(config)#policy Allow_Outbound Any Any \ interface 0 -firewall pass -nat DYNAMIC_NAT WG(config)#policy HQ_BR_VPN HQ BR interface 0 \ -firewall pass -ipsec bi HQ_IPsec WG(config)#policy SJ_NY_VPN SJ NY interface 1 \ WatchGuard Command Line Interface Guide 59
Page 1 and 2:
WatchGuard ® Command Line Interfac
Page 3 and 4:
WatchGuard Technologies, Inc. Fireb
Page 5 and 6:
4. Limited Warranty. WATCHGUARD mak
Page 7 and 8:
6. Export Controls. You agree not t
Page 9 and 10:
Contents Contents .................
Page 11 and 12:
CHAPTER 3 Configuration Mode Comman
Page 13 and 14:
CHAPTER 5 Other Commands ..........
Page 15 and 16:
CHAPTER 1 Using the Command Line In
Page 17 and 18:
CLI limitations CLI Guide text conv
Page 19 and 20:
Getting started with the WatchGuard
Page 21 and 22: Getting started with the WatchGuard
Page 23 and 24: Case sensitivity Getting started wi
Page 27 and 28: Navigating through the CLI Getting
Page 29 and 30: Arguments None. Example WG(admin)#e
Page 33 and 34: Installing and configuring a WatchG
Page 35 and 36: Command Description Installing and
Page 37 and 38: Installing and configuring a WatchG
Page 39 and 40: CHAPTER 2 Administration Mode Comma
Page 41 and 42: Administration mode commands plete
Page 43 and 44: Administration mode commands 4 Clic
Page 45 and 46: Administration mode commands #ex: e
Page 47 and 48: crl command Administration mode com
Page 49 and 50: Administration mode commands Merge
Page 51 and 52: Administration mode commands Proces
Page 53 and 54: Administration mode commands Shuts
Page 55 and 56: CHAPTER 3 Configuration Mode Comman
Page 57 and 58: abort command Top-level configurati
Page 59 and 60: certificate command Top-level confi
Page 61 and 62: Top-level configuration mode comman
Page 63 and 64: interface command Top-level configu
Page 65 and 66: Arguments None Example WG#config WG
Page 67 and 68: [no] traffic command (log level) WG
Page 71: Top-level configuration mode comman
Page 75 and 76: as command Top-level configuration
Page 81 and 82: Second level configuration mode com
Page 87 and 88: Example Second level configuration
Page 105 and 106: Arguments Second level configurati
Page 123 and 124:
Second level configuration mode com
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Level 3 configuration mode commands
Page 139 and 140:
Level 3 configuration mode commands
Page 141 and 142:
CHAPTER 4 Debug Mode Commands All W
Page 143 and 144:
arp command Debugging/troubleshooti
Page 145 and 146:
Debugging/troubleshooting commands
Page 147 and 148:
- images/rs_sublogo.gif Debugging/t
Page 149 and 150:
pppoe_config command Debugging/trou
Page 151 and 152:
Page 153 and 154:
set_dos_if command Debugging/troubl
Page 155 and 156:
Page 157 and 158:
CHAPTER 5 Other Commands No command
Page 159 and 160:
Show address command Display curren
Page 161 and 162:
Show all_routes command WG#show all
Page 163 and 164:
Effect Displays any DNS configurati
Page 165 and 166:
Show command component, action or p
Page 167 and 168:
Show command Effect Displays whethe
Page 169 and 170:
Show command Arguments This argume
Page 171 and 172:
Show command Arguments This argume
Page 173 and 174:
Show command Effect Displays the ba
Page 175 and 176:
Index A abbreviations 8 abort syste
Page 177 and 178:
administration mode disable 108 CLI
Page 179 and 180:
log configuration, level 3 commands
Page 181:
X xml export debugging information
show all

CLI Guide - WatchGuard Technologies

Create successful ePaper yourself

Delete template?

Save as template?