security zone-policy zone <zone> default-action <action>

Defines the default action for traffic leaving a security zone.

set security zone-policy zone zone default-action { accept | drop }

delete security zone-policy zone zone default-action [ accept | drop ]

show security zone-policy zone zone default-action

Traffic is dropped silently.

zone: The name of a security zone for which traffic is destined.
accept: Accepts traffic. The action to be taken for traffic leaving the zone and does not match any firewall rule sets.
drop: Drops traffic silently. The action to be taken for traffic leaving the zone and does not match any firewall rule sets.
Note: This is the default action if default-action is not set.

Configuration mode


security {
    zone-policy {
        zone zone {
            default-action 
                accept
                drop
        }
    }
}

This action is taken for all traffic leaving a zone where the traffic does not match any firewall rules.

Use the set form of this command to set the default action for traffic leaving a security zone.

Use the delete form of this command to restore the default action, that is, traffic is dropped silently.

Use the show form of this command to display the configuration of the default action.

Vyatta NOS documentation