User Guide

firewall Commands
362
E-DOC-CTC-20071119-0014 v1.0
firewall rule modify
Modify a rule.
SYNTAX:
firewall rule modify chain = <chain name>
[index = <number]>
[newindex = <number]>
[name = <string]>
[clink = <chain name]>
[[!]srcintf] = <chain name]>
[[!]srcip] = <chain name]>
[[!]dstintf] = <chain name]>
[[!]dstip] = <chain name]>
[[!]serv] = <chain name]>
[log = <{disabled|enabled}]>
[state = <{disabled|enabled}]>
[action = <{accept|deny|drop|reset|count|
link}]>
where:
chain The name of the chain which contains the rule. REQUIRED
index The index of the rule in the chain. OPTIONAL
newindex The new index of the rule in the chain. OPTIONAL
name The name of the new rule. OPTIONAL
clink The name of the chain to be parsed when this
rule applies.
OPTIONAL
[!]srcintf] The name of the source interface expression.
If a value is preceded by a “!”, it means NOT.
OPTIONAL
[!]srcip] The name of the source ip expression.
If a value is preceded by a “!”, it means NOT.
OPTIONAL
[!]dstintf] The name of the destination interface
expression.
If a value is preceded by a “!”, it means NOT.
OPTIONAL
[!]dstip] The name of the destination ip expression.
If a value is preceded by a “!”, it means NOT.
OPTIONAL
[!]serv] The name of the service expression.
If a value is preceded by a “!”, it means NOT.
OPTIONAL
log Disable/Enable logging when this rule applies. OPTIONAL