Fortinet/CLI: Unterschied zwischen den Versionen
Aus SchnallIchNet
Cbs (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „ == CLI == === Policy === <pre> config firewall policy edit 81 set srcintf "port1" set dstintf "wan1" set srcaddr "Netz1" "Netz…“) |
Cbs (Diskussion | Beiträge) |
||
| Zeile 1: | Zeile 1: | ||
| + | __FORCETOC__ | ||
== CLI == | == CLI == | ||
Version vom 30. Dezember 2016, 09:57 Uhr
Inhaltsverzeichnis
CLI
Policy
config firewall policy
edit 81
set srcintf "port1"
set dstintf "wan1"
set srcaddr "Netz1" "Netz 2" "Netz ..."
set dstaddr "Netz - DST"
set action ipsec
set schedule "always"
set service "ALL"
set logtraffic all
set natip 10.x.y.0 255.255.255.0
set comments "ACHTUNG NAT-Adresse via CLI hinzugefuegt"
set outbound enable
set natoutbound enable
set vpntunnel "PH1NAME"
next
end
config firewall policy
edit 238
set srcintf "port7"
set dstintf "wan1"
set srcaddr "NETZ SRC"
set dstaddr "Netz DST"
set action ipsec
set schedule "always"
set service "ALL"
set logtraffic all
set natip 10.x.y.0 255.255.255.0
set comments "Outbound NAT! set natip 10.x.y.0 255.255.255.0"
set inbound enable
set outbound enable
set natoutbound enable
set vpntunnel "PH1NAME"
next
end
