Install guide
Software Version 2.7.5 71
Software Version 2.7.5
C613-10454-00 REV A
show firewall policy
Syntax SHow FIREwall POLIcy[=policy-name] [COUnter] [SUMmary]
where:
■ policy-name is a string 1 to 15 characters long. Valid characters are
uppercase and lowercase letters, digits, and the underscore character.
Description This command displays detailed information about the specified policy or all
policies.
Figure 16: Example output from the show firewall policy command
Policy : Office
TCP Timeout (s) ................... 3600
UDP Timeout (s) ................... 1200
Other Timeout (s) ................. 1200
TCP Handshake Timeout Mode ........ Normal
MAC Cache Timeout (m) ............. 1440
RADIUS Limit ...................... 100
Accounting ........................ disabled
Enabled Logging Options ........... none
Enabled Debug Options ............. none
Enabled Debug Modes ............... none
Enabled Debug IP Address .......... none
.
.
.
Table 20: New parameters in the output of the show firewall policy command
Parameter Meaning
Enabled Logging Options The logging options that are currently enabled. If SIP ALG
logging is enabled, this field displays “SIPALG”. If no
options are enabled, “none” is displayed.
Enabled Debug Options The debugging options that are currently enabled. If SIP
ALG debugging is enabled, this field displays “SIPALG”. If
no options are enabled, “none” is displayed.
Enabled Debug Modes The debug modes that are currently enabled, if SIP ALG
debugging is enabled; one or more of ALL, ERRORCODE,
MESSAGE, PARSING and TRACE. For a description of the
available debugging options, see Table 19 on page 69. If
SIP ALG debugging is disabled, "none" is displayed.
Enabled Debug IP Address A single IP address or IP address range. If SIP ALG
debugging is enabled, the firewall only displays debugging
messages for packets whose IP address matches this
address.
If the firewall displays debugging messages for all IP
addresses, “all” is displayed. If SIP ALG debugging is
disabled, "none" is displayed.