Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Command Reference-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
70
Syntax
reset interzone-policy counter [ vd vd-name ] { all | source sour-zone-name destination dest-zone-name }
View
User view
Default level
1: Monitor level
Parameters
vd vd-name: Clears the information of a VD specified by its name, which is a case-insensitive string of 1
to 20 characters excluding question mark (?), less-than sign (<), greater-than sign (>), backward slash (\),
quotation mark ("), percentage sign (%), apostrophe ('), ampersand (&), and number sign (#).If no VD
is specified, this command clears the information of the default VD, which is named Root.
all: Clears information of all interzone policies.
source sour-zone-name: Clears the interzone policy information of a source zone specified by its name,
which is a string of 1 to 20 characters.
destination dest-zone-name: Clears the information of a destination zone specified by its name, which is
a string of 1 to 41 characters.
Examples
# Clear information of all interzone policies on the default VD Root.
<Sysname> reset interzone-policy counter all
rule
Use rule to create an interzone policy rule and enter its view.
Use undo rule to delete an interzone policy rule or the specified attributes of an interzone policy rule. If
no optional keywords are specified, you delete the entire rule. If optional keywords are provided, you
delete the specified attributes.
Syntax
rule [ rule-id ] { deny | permit } [ content-filter policy-template-name | logging | time-range
time-range-name ] *
undo rule rule-id [ content-filter | logging | time-range ]
Default
No interzone policy rule is configured for an interzone instance.
Views
Interzone instance view
Default command level
2: System level
Parameters
rule-id: Specifies the ID of the interzone policy rule. This argument ranges from 0 to 65534. If no rule ID
is specified when you create a rule, the system automatically assigns the current maximum rule ID + 1
(starting from 0) to the rule.
deny: Drops matching packets.