security firewall name <name> default-action <action>
Defines the default action for a firewall rule.
- name
- Multi-node. The name of a firewall rule set. The name must not contain a space or any other of the following special characters: |, ;, &, $, <, or >. The name can be as many as 28 characters long.
You can define more than one firewall rule set by creating more than one name configuration node.
- accept
- Accepts the default action for the specified rule set.
- drop
- Denies the default action for the specified rule set.
Configuration mode
security {
firewall {
name name {
default-action
accept
drop
}
}
}
A firewall rule set is a named collection of as many as 9,999 packet-filtering rules. If default-action is not set, or is set to drop, then an implicit rule performs the drop. If default-action is set to accept, then a default rule is added to the end of the rule set that matches all packets and has action accept.
Use the set form of this command to define an IP firewall rule.
Use the delete form of this command to delete a firewall rule.
Use the show form of this command to display a firewall rule.