F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Command Reference-6PW100
75
Examples
# For the interzone instance with source zone office and destination zone library, reference source IP
object named ip1, destination IP object named ip2, and service object named http in interzone policy
rule 0, and enable the interzone policy rule.
<Sysname> system-view
[Sysname] interzone source office destination library
[Sysname-interzone-office-library] rule permit
[Sysname-interzone-office-library-rule-0] source-ip ip1
[Sysname-interzone-office-library-rule-0] destination-ip ip2
[Sysname-interzone-office-library-rule-0] service http
[Sysname-interzone-office-library-rule-0] rule enable
Related commands
• destination-ip
• service
• source-ip
service
Use service to reference a service object in an interzone policy rule.
Use undo service to remove a service object from an interzone policy rule.
Syntax
service service-obj-name
undo service service-obj-name
Default
No service object is referenced in an interzone policy rule.
Views
Interzone policy rule view
Default command level
2: System level
Parameters
service-obj-name: Specifies a service object by its name. This argument is a case-insensitive string of 1 to
31 characters.
Examples
# Reference service object named http in interzone policy rule 0 for the interzone instance with source
zone office and destination zone library.
<Sysname> system-view
[Sysname] interzone source office destination library
[Sysname-interzone-office-library] rule permit
[Sysname-interzone-office-library-rule-0] service http
source-ip
Use source-ip to reference a source IP object in an interzone policy rule.