The rule firewall command configures the rule for checking the firewall software. As a result, the user terminal, on which the specified version of the firewall software is installed and running, is allowed to pass the rule check.
The undo rule firewall command deletes the firewall software of the specified version in the rule for checking the firewall software.
rule rule-name firewall { any | software-id }
undo rule rule-name firewall { any | software-id }
| Parameter | Description | Value |
|---|---|---|
| rule-name | Specifies the name of the rule. | The value is a string of 1 to 63 characters. |
| any | Indicates that the user terminal can pass the rule check when any supported version of the firewall software is installed and running on the host. | - |
| software-id | Specifies the ID of the firewall software. It indicates that the user terminal can pass the rule check when the firewall software of any specified version is installed and running on the user terminal. | The value is an integer ranging from 0 to 8. Using the display support-list firewall command, you can view the ID and corresponding name of the firewall software supported by the virtual gateway. |
# Configure the rule for checking the firewall software as rule1 to check the user terminal. As a result, the user terminal, on which the firewall software with ID as 0 is installed and running, is allowed to pass the rule check.
<sysname> system-view [sysname] v-gateway abc [sysname-abc] hostchecker [sysname-abc-hostchecker] eps-policy policy1 [sysname-abc-hostchecker-policy1] rule rule1 type firewall [sysname-abc-hostchecker-policy1] rule rule1 firewall 0