- Products
- Network Security
- Threat Protection
- Secure Access Service Edge (SASE)
- Cloud Security
- Endpoint Security
- Email Security
- Secure Access
-
Wi-Fi 6 Access Points
SonicWall SonicWave 600 series access points provide always-on, always-secure connectivity for complex, multi-device environments.
Read More
- Solutions
- Industries
- Use Cases
- Solutions Widgets
- Solutions Content Widgets
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
- Solutions Image Widgets
-
- Partners
- SonicWall Partners
- Partner Resources
- Partner Widgets
- Custom HTML : Partners Content WIdgets
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
- Partners Image Widgets
-
- Support
- Support
- Resources
- Capture Labs
- Support Widget
- Custom HTML : Support Content WIdgets
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
- Support Image Widgets
-
- COMPANY
- PROMOTIONS
- MANAGED SERVICES
- Contact Sales
-
- Menu
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
How to modify Firewall Access Rules using CLI
03/26/2020 
47 People found this article helpful
201,331 Views
Description
Modifying Firewall Access Rules using the command line interface.
This article focuses on using CLI access to modify Firewall Access Rules.
If for example we do not have access to the unit's GUI or a newly created Access Rule blocks access to the unit, there is the possibility to change or disable/enable the rules.
Resolution
Step 1: Log into the appliance using a terminal software like puTTY.
Step 2: Type
configure and hit Enter in order to enter the configuration mode.Step 3: In order to see the Firewall Access Rules created on the unit please type
show access-rules and hit Enter.This will display all the Firewall Access rules one by one with their id number.
The id number will be useful for modifying the rules, so once you find the rule you would like to change, please note down the ID.
The id number will be useful for modifying the rules, so once you find the rule you would like to change, please note down the ID.
By pressing the space bar you can skip from one rule to the next.
Step 4: In our case the rule we want to change has th ID 17.
To see the rule you may also type
As you can see below this is a deny rule from LAN to WAN to the destination of a FQDN object "wp.pl".
To see the rule you may also type
show access-rule uuid 17 and hit Enter.As you can see below this is a deny rule from LAN to WAN to the destination of a FQDN object "wp.pl".
Step 5: In our case we want to disable the rule.
In order to do so we need to type
In order to do so we need to type
access-rule uuid 17 and hit Enter.
Step 6: Then type
no enable and hit Enter, then type commit and hit Enter once again.Step 7: Finally, type
exit and hit Enter in order to exit the config session.
Then, close puTTY. The changes are applied and the rule is disabled.
Additionally, once you are in the configuration section of a specific rule, you can hit Tab in order to display all other Access Rule Commands that can be used.
Related Articles
- How to change the HTTP and HTTPS management ports on UTM Appliances using CLI
- Bandwidth usage and tracking in SonicWall
- How to force an update of the Security Services Signatures from the Firewall GUI
Categories
- Firewalls > TZ Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall NSA Series
YES
NO