|
|
|
Description
Executes the offline Unified Policy.
Important Note:
This command only supports:
These are not supported:
Syntax
fw [-d] up_execute ipp=<IANA Protocol Number> [src=<Source IP>] [dst=<Destination IP>] [sport=<Source Port>] [dport=<Destination Port>] [protocol=<Protocol Detection Name>] [application=<Application/Category Name 1> [application=<Application/Category Name 2> ...]] |
Parameters
Parameter |
Description |
|---|---|
No Parameters |
Shows the built-in usage. |
|
Runs the command in debug mode. Use only if you troubleshoot the command itself. Note - If you use this parameter, then redirect the output to a file, or use the |
|
IANA Protocol Number in the Hexadecimal format. For example:
Important - This parameter is always mandatory. |
|
Source IP address. |
|
Destination IP address. |
|
Source Port number in the Decimal format. See IANA - Port Numbers. |
|
Destination Port number in the Decimal format. See IANA - Port Numbers. Important - This parameter is mandatory for the TCP (6) and UDP (17) protocols. |
|
Protocol detection name (HTTP, HTTPS, and so on). |
|
Name of the Application/Category as defined in SmartConsole. Note - You can specify multiple applications. |
Example 1
[Expert@MyGW:0]# fw up_execute src=126.200.49.240 dst=10.1.1.1 ipp=1
Rulebase execution ended successfully. Overall status: ---------------- Active clob mask: 0 Required clob mask: 0 Match status: MATCH Match action: Accept
Per Layer: ------------ Layer name: Network Layer id: 0 Match status: MATCH Match action: Accept Matched rule: 2 Possible rules: 2 16777215
[Expert@MyGW:0]# |
Example 2
[Expert@MyGW:0]# fw up_execute src=10.1.1.1 ipp=6 dport=8080 protocol=HTTP application=Facebook application=Opera
Rulebase execution ended successfully. Overall status: ---------------- Active clob mask: 0 Required clob mask: 0 Match status: MATCH Match action: Accept
Per Layer: ------------ Layer name: Network Layer id: 0 Match status: MATCH Match action: Accept Matched rule: 2 Possible rules: 2 16777215
[Expert@MyGW:0]# |
