Install guide
60 Firewall Enhancements Release Note
Software Version 2.7.6
C613-10462-00 REV A
show firewall
Syntax SHow FIREwall
Description This command displays firewall settings, including a summary of each policy
(Figure 15, Tab le 7).
Figure 15: Example output from the show firewall command for a policy that uses
interface-based ENAPT
Firewall Configuration
Status .................... disabled
Enabled Notify Options .... manager
SIP ALG enabled ........... FALSE
Maximum Packet Fragments .. 20
Policy : example
TCP Timeout (s) ................... 3600
UDP Timeout (s) ................... 1200
Other Timeout (s) ................. 1200
ICMP Unreachable Timeout (s) ...... 0
TCP Handshake Timeout Mode ........ Normal
SMTP Domain ....................... not set
TCP Setup Proxy ................... enabled
UPNP .............................. disabled
WAN interfaces .................. none
LAN interfaces .................. none
Maximum port maps ............... 250
SIP ALG ........................... disabled
Private Interface : vlan2
Public Interface : vlan3
Method .......................... dynamic
NAT ............................. enapt
Method ........................
Private Interface ............. vlan2
Global IP ..................... 192.168.2.3
Table 7: New and changed parameters in output of the show firewall command
Parameter Meaning
ICMP Unreachable Timeout The number of seconds before the firewall deletes a session
after it receives an ICMP unreachable message for that
session.
NAT The type of network address translation that the policy
performs. If the policy performs ENAPT, “enapt” is
displayed.