This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Install firewall rule from CC

Hi!
I trying install firewall rules from CC.
Version UTM Release 9.315-2
Create Ref_Source, Ref_Destination, Ref_Port, Rule.
Install broken when i set of rules into packetfilter rules.
Command:
/usr/local/bin/confd-client.plx -noquote set packetfilter rules '["REF_ADAIknCDBj","REF_PacPacIperfFromInter"]'
Error:
Bareword "packetfilter" not allowed while "strict subs" in use at (eval 88) line 1.
Bareword "rules" not allowed while "strict subs" in use at (eval 88) line 1.
RAW in this moment:
'packetfilter' => 'rules' => [ 'REF_ADAIknCDBj' ]

In version UTM 8.*** rules create no problem.

This thread was automatically locked due to age.

0 William Warren over 10 years ago

why not use the web admin interface?

Owner: Emmanuel Technology Consulting

http://etc-md.com

Former Sophos SG(Astaro) advocate/researcher/Silver Partner

PfSense w/Suricata, ntopng,

Other addons to follow
0 Yamaneko over 10 years ago

Administrative point more than 350.
- 0 vilic over 10 years ago in reply to Yamaneko
  
  Administrative point more than 350.
  
  On which forum site?
  
  Expert Exchange, Spiceworks..?
- 0 William Warren over 10 years ago in reply to Yamaneko
  
  Administrative point more than 350.
  
  what has this got to do with my question? Why do things the hard way?
  
  Owner: Emmanuel Technology Consulting
  
  http://etc-md.com
  
  Former Sophos SG(Astaro) advocate/researcher/Silver Partner
  
  PfSense w/Suricata, ntopng,
  
  Other addons to follow

0 teched_01 over 10 years ago

Create a packetfilter rule (Any, Any, Any in this example):

# cc set_object "{ 'class' => 'packetfilter', 'data' => { 'action' => 'accept', 'destinations' => [ 'REF_NetworkAny' ], 'name' => '', 'services' => [ 'REF_ServiceAny' ], 'sources' => [ 'REF_NetworkAny' ], 'status' => 1 }, 'type' => 'packetfilter' }"

Add rule to packetfilter rule array (not the prettiest - please share a better way):

# echo -e packetfilter\nrules@\n+REF_PacPacWhatever\n  | cc --batch

0 Yamaneko over 10 years ago in reply to teched_01

Create a packetfilter rule (Any, Any, Any in this example):
# cc set_object "{ 'class' => 'packetfilter', 'data' => { 'action' => 'accept', 'destinations' => [ 'REF_NetworkAny' ], 'name' => '', 'services' => [ 'REF_ServiceAny' ], 'sources' => [ 'REF_NetworkAny' ], 'status' => 1 }, 'type' => 'packetfilter' }"
Add rule to packetfilter rule array (not the prettiest - please share a better way):
# echo -e packetfilter\nrules@\n+REF_PacPacWhatever\n  | cc --batch

It's working!
Thank's