Install guide

ManualsBrandsAllied Telesis ManualsSwitchAT-8824

Software Version 2.7.4 13

Software Version 2.7.4

C613-10444-00 REV A

show firewall policy

Syntax SHow FIREwall POLIcy[=policy-name] [COUnter] [DYnamic]

[LISt] [SUMmary] [USer]

Description of changes When you specify a policy using the policy parameter, output from this

command now indicates:

■ whether the SIP ALG is enabled or disabled

■ if one of the new debugging options is enabled on the policy

■ if any rules on the policy use NAPT

If you specify the counter parameter, the output also includes the following

entries:

■ Total number of SIP messages

The number of SIP messages this policy has processed since the router last

started up.

■ Number of SIP messages ignored

The number of SIP messages that were passed to the SIP ALG but ignored

because the SIP message type defined in the SIP message header was

unknown (not supported).

■ Number of audio sessions created

The number of VoIP sessions that were created as a result of a successful SIP

peer-to-peer negotiation, since the router last started up.

Figure 3: Example output from the show firewall policy=voip command

Policy : voip

TCP Timeout (s) ................... 3600

UDP Timeout (s) ................... 1200

Other Timeout (s) ................. 1200

TCP Handshake Timeout Mode ........ Normal

MAC Cache Timeout (m) ............. 1440

RADIUS Limit ...................... 100

Accounting ........................ disabled

Enabled Logging Options ........... none

Enabled Debug Options ............. errorcode,parsing

Identification Protocol Proxy ..... enabled

Enabled IP options ................ none

Enhanced Fragment Handling ........ none

Enabled ICMP forwarding ........... none

Receive of ICMP PINGS ............. enabled

Number of Notifications ........... 0

Number of Deny Events ............. 1

Number of Allow Events ............ 0

Number of Active TCP Opens ........ 0

Number of Active Sessions ......... 0

Cache Hits ........................ 0

Discarded ICMP Packets ............ 0

SMTP Domain ....................... not set

TCP Setup Proxy ................... enabled

UPNP .............................. disabled

WAN interfaces .................. none

LAN interfaces .................. none

Maximum port maps ............... 250

SIP ALG ........................... enabled