Vyatta NOS documentation

Learn how to install, configure, and operate Vyatta Network Operating System (Vyatta NOS), which helps to drive our virtual networking and physical platforms portfolio.

security firewall name <name> default-action <action>

Defines the default action for a firewall rule.

set security firewall name name default-action { accept | drop }
delete security firewall name name default-action [ accept | drop ]
show security firewall name name default-action
name
Multi-node. The name of a firewall rule set. The name must not contain a space or any other of the following special characters: |, ;, &, $, <, or >. The name can be as many as 28 characters long.

You can define more than one firewall rule set by creating more than one name configuration node.

accept
Accepts the default action for the specified rule set.
drop
Denies the default action for the specified rule set.

Configuration mode


security {
    firewall {
        name name {    
            default-action 
                accept
                drop
        }
    }
}

A firewall rule set is a named collection of as many as 9,999 packet-filtering rules. If default-action is not set, or is set to drop, then an implicit rule performs the drop. If default-action is set to accept, then a default rule is added to the end of the rule set that matches all packets and has action accept.

Use the set form of this command to define an IP firewall rule.

Use the delete form of this command to delete a firewall rule.

Use the show form of this command to display a firewall rule.