F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Command Reference-6PW100
66
Examples
# Display information of interzone policy rules and interzone policy groups referencing IPv4 advanced
ACLs on the default VD Root.
<Sysname> display interzone-policy
Interzone-policy source office destination library
rule 0 permit logging time-range aaa(Inactive) (1 times matched)
source-ip ip1
destination-ip ip3
service http
source-mac mac1
destination-mac mac2
rule enable
Interzone-policy source trust destination untrust (2 times matched)
rule acl 3001
rule acl 3002
rule acl enable
# Display information of interzone policy groups referencing IPv6 advanced ACLs on the default VD
Root.
<Sysname> display interzone-policy ipv6
Interzone-policy source trust destination untrust
rule acl ipv6 3001
rule acl ipv6 3002
rule acl ipv6 enable
Table 18 Command output
Field Descri
p
tion
1 times matched
The interzone policy rule has been matched once. When the interzone policy
rule has never been matched, the field is not displayed. When the time-range
is changed, the field is not cleared.
source-ip Name of the source IP object referenced by an interzone policy rule.
destination-ip Name of the destination IP object referenced by an interzone policy rule.
service Name of the service object referenced by an interzone policy rule.
source-mac Name of the source MAC object referenced by an interzone policy rule.
destination-mac Name of the destination MAC object referenced by an interzone policy rule.
rule enable Indicates that the interzone policy rule has been enabled.
rule acl Number of the advanced IPv4 ACL referenced by an interzone policy rule.
rule acl enable
Indicates that the interzone policy group referencing IPv4 advanced ACLs
have been enabled.
rule acl ipv6 Number of the IPv6 advanced ACL referenced by the interzone policy group.
rule acl ipv6 enable
Indicates that the interzone policy group referencing the IPv6 advanced ACLs
has been enabled.