How To Modify Firewall Access Rules Using UUID on CLI
04/21/2021 0 600
Modifying Firewall Access Rules using the command line interface.
This article helps in providing easier way to modify Firewall Access Rules using the UUID through CLI.
Step 1: Log into the appliance using a terminal software like puTTY.
Step 2: Type
configure and hit Enter in order to enter the configuration mode.
Step 3: In order to see the Firewall Access Rules created on the unit please type
show access-rules and hit Enter.
This will display all the Firewall Access rules one by one with their details and UUID. The UUID number will be useful for modifying the rules, so once you find the rule you would like to change, please note down the ID.
Step 4: In this case, we are trying to edit the allowed LAN to LAN access-rule for the ping service with the UUID: 661ef5d3-07ea-b700-0700-2cb8ed73dc8c
Step 5: In our case we want to disable the rule.
In order to do so we need to type
access-rule uuid 661ef5d3-07ea-b700-0700-2cb8ed73dc8c and hit Enter.
Step 6: Then type
no enable and hit Enter, then type
commit and hit Enter once again.
The UUID information is also available in the TSR of the firewall.
#Firewall : Access Rules_START
Rule 1 LAN -> LAN Allow Service Any -> SNMP (Enabled)
IP: Any -> All X2 Management IP Iface: Any (ffffffff) -> Any (ffffffff)
Policy Name: Default Access Rule