network iptables addrule

Add an ACCEPT or DROP rule to the iptables firewall for the appliance.

**WARNING**   These rules govern network access to the appliance. Adding a malformed rule may cause a lockout.

NOTE   You must use the network iptables save command to save your changes. Failure to do so will result in your changes being discarded on the next appliance restart.

User Access

admin, pseoperator

Syntax

network iptables addrule

accept {host -ip <IP_address> | network -net <IP_address> -mask <netmask>}

drop {host -ip <IP_address> | network -net <IP_address> -mask <netmask>}

Argument(s) Shortcut Description
accept a Add a host or network ACCEPT rule to the iptable for the appliance.
drop d Add a host or network DROP rule to the iptable for the appliance.
host –ip <IP_address> h –i Specifies the IP address of the host you are adding the rule for.
network –net <IP_address> –mask <netmask> n –n –m Specifies the IP address and network mask for the network you are adding the rule for.

Example

psesh:>network iptables addrule accept host -ip 172.20.11.105
ACCEPT rule added for host 172.20.11.105
Command Result : 0 (Success)

 

psesh:>network iptables addrule drop network -net 172.20.11.212 -mask 255.0.255.0
DROP rule added for 172.20.11.212/255.0.255.0 network
Command Result : 0 (Success)


Customer Support Portal

SafeNet ProtectToolkit 5.9 Product Documentation  06 January 2020  Copyright 2009-2020 Thales. All rights reserved.