Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 2 subscribers
  • Views 4984 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Install firewall rule from CC

Yamaneko
Hi! 
I trying install firewall rules from CC.
Version UTM Release 9.315-2
Create Ref_Source, Ref_Destination, Ref_Port, Rule.
Install broken when i set of rules into packetfilter rules.
Command:
/usr/local/bin/confd-client.plx -noquote set packetfilter rules '["REF_ADAIknCDBj","REF_PacPacIperfFromInter"]'
Error: 
Bareword "packetfilter" not allowed while "strict subs" in use at (eval 88) line 1.
Bareword "rules" not allowed while "strict subs" in use at (eval 88) line 1.
RAW in this moment:
'packetfilter' => 'rules' => [ 'REF_ADAIknCDBj' ]

In version UTM 8.*** rules create no problem.


This thread was automatically locked due to age.
  • 0
    why not use the web admin interface?

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    Administrative point more than 350.
  • 0
    Create a packetfilter rule (Any, Any, Any in this example):

    # cc set_object "{ 'class' => 'packetfilter', 'data' => { 'action' => 'accept', 'destinations' => [ 'REF_NetworkAny' ], 'name' => '', 'services' => [ 'REF_ServiceAny' ], 'sources' => [ 'REF_NetworkAny' ], 'status' => 1 }, 'type' => 'packetfilter' }"



    Add rule to packetfilter rule array (not the prettiest - please share a better way):
    # echo -e packetfilter\nrules@\n+REF_PacPacWhatever\n  | cc --batch
  • 0 in reply to teched_01
    Create a packetfilter rule (Any, Any, Any in this example): 

    # cc set_object "{ 'class' => 'packetfilter', 'data' => { 'action' => 'accept', 'destinations' => [ 'REF_NetworkAny' ], 'name' => '', 'services' => [ 'REF_ServiceAny' ], 'sources' => [ 'REF_NetworkAny' ], 'status' => 1 }, 'type' => 'packetfilter' }"



    Add rule to packetfilter rule array (not the prettiest - please share a better way): 
    # echo -e packetfilter\nrules@\n+REF_PacPacWhatever\n  | cc --batch


    It's working! 
    Thank's
  • 0 in reply to Yamaneko
    Administrative point more than 350.


    On which forum site? 

    Expert Exchange, Spiceworks..?
  • 0 in reply to Yamaneko
    Administrative point more than 350.


    what has this got to do with my question?  Why do things the hard way?

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

Unfiltered HTML