Vigor2120 Series User’s Guide
435
Session timeout : 1440
DrayTek Banner : Enable
---------------------------------------------------------------
Apply IP filter to VPN incoming packets : Enable
Accept large incoming fragmented UDP or ICMP packets: Enable
----------------------------------------------------------------
Strict Security Checking
[ ]APP Enforcement
>
T
T
e
e
l
l
n
n
e
e
t
t
C
C
o
o
m
m
m
m
a
a
n
n
d
d
:
:
i
i
p
p
f
f
r
r
u
u
l
l
e
e
This command is used to set filter rule for firewall.
ipf rule s r [-<command> <parameter> | ...
ipf rule s r -v
S
S
y
y
n
n
t
t
a
a
x
x
D
D
e
e
s
s
c
c
r
r
i
i
p
p
t
t
i
i
o
o
n
n
Parameter Description
s
Such word means Filter Set, range form 1~12.
r
Such word means Filter Rule, range from 1~7.
<Command><parameter
>
The following lists all of the available commands with
parameters.
-e
It means to enable or disable the rule setting.
0- disable
1- enable
-s o:g <obj>
It means to specify source IP object and IP group.
o - indicates “object”.
g - indicates “group”.
obj - indicates index number of object or index number of
group. Available settings range from 1-192. For example, “-s
g 3" means the third source IP group profile.
–s u <Address Type>
<Start IP Address> <End
IP Address> | <Address
Mask>
It means to configure source IP address including address
type, start IP address, end IP address and address mask.
u – It means “user defined”.
Address Type - Type the number (representing different
address type).
0 - Subnet Address
1 - Single Address
2 - Any Address
3 - Range Address
Example:
Set Subnet Address => -s u 0 192.168.1.10 255.255.255.0
Set Single Address => -s u 1 192.168.1.10
Set Any Address => -s u 2
Set Range Address => -s u 3 192.168.1.10 192.168.1.15
To Next Page
Loading...
Need help?
General
