change rule via cli

Heimo · August 8

Dear all,

my name is Heimo and this is my first question. I am not a Firewall specialist and so i changed a rule (webinterface from LAN) unintentionally from allow to deny and so I am not able to access the web gui. For this gui my knowledge is ok.

Does anybody know how to change a secure-policy of a FLEX-100 from deny to allow via cli?

Kind regards

Heimo

Zyxel_Melen · August 11

Hi @Heimo

Please try to:

Login to your firewall via SSH/Console.
Use the command "show running-config" to identify this security policy. For example: "secure-policy 8".
Use the command "configure terminal" to enter the configuration mode.
Enter the security policy you found in step 2 to enter the editor mode for this policy.
Use the command "no activate" to disable this policy.
Remember to exit the configuration mode and enter write to save the changes.

Zyxel_Melen · August 11

Hi @Heimo

Please try to:

Login to your firewall via SSH/Console.
Use the command "show running-config" to identify this security policy. For example: "secure-policy 8".
Use the command "configure terminal" to enter the configuration mode.
Enter the security policy you found in step 2 to enter the editor mode for this policy.
Use the command "no activate" to disable this policy.
Remember to exit the configuration mode and enter write to save the changes.

Heimo · August 11

Dear Zyxel_Melen,

thank you very much, a few minutes ago I could change it. I had to allow a rule, which I

i changed unintentionally from allow to deny . It was only the syntax I did not know.
I did this:
- configure terminal
- secure-policy 28
- action allow
- service https
- exit
- write

And now it works. Thank you very much for trying to help me. I learned a lot by trying very hard to find a solution.

Greetings from Austria

Kind regards

Heimo

change rule via cli

Accepted Solution

All Replies

Categories

Security Help Center