HP StorageWorks 4/256 Brocade Fabric OS Command Reference Manual - Supporting - Page 340
ipfilter, explicitly ends an open transaction and aborts policy changes in memory
View all HP StorageWorks 4/256 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 340 highlights
2 ipfilter ipfilter Manages the IP filter policies. Synopsis --create -type < ipv4 | ipv6> --clone -from --show [policyname] --save [policyname] --activate --delete --addrule -rule -sip -dp -proto -act < permit | deny > --delrule -rule --transabort Description Use this command to manage IP filter policies. The ipfilter command and sub-commands are non-interactive, except when prompting for a confirmation. The IP filter policy sets up a packet filtering firewall to provide access control on the management IP interface. The IPv4 and IPv6 policies are either in the defined configuration or active configuration. Excluding the default policies, there can be maximum six policies in the defined configuration and one policy per IPv4 and IPv6 type in the active configuration. The active policy must be the default, or one of the policies in the defined configuration. Only the active policies are enforced. All of the ipfilter sub-commands except --show and --transabort, create a transaction owned by the management session initiating the sub-commands. An open transaction prevents other transactions from being created on different management sessions. The --create, --clone, --delete, --addrule, and --delrule operands modify policies in memory buffer, while operands, --save and -activate, commit policies to the persistent configuration. The operands, -save and --activate, implicitly end the transaction if all policy changes are committed. The operand --transabort explicitly ends an open transaction and aborts policy changes in memory buffer. Closing the management session that owns the transaction also aborts policy changes and closes the transaction. Operands This command has the following operands: This operand can be issued with all of the sub-commands. The policy name is a unique string composed of maximum 20 alpha, numeric or underscore characters. The default_ipv4 and default_ipv6 names are reserved for default IP filter policies. The policy name is case insensitive and is always stored as lower case. The policy type identifies the policy as an IPv4 or IPv6 filter. There can be maximum eight IP filter policies created. --create -type ipv4 | ipv6 Creates an IP filter policy with the specified name and type. The policy created is stored in a temporary buffer and will be lost if the policy is not saved to persistent configuration. 308 Fabric OS Command Reference Manual 53-1000436-01