Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

PowerScaleOneFS CLI Command Reference

PDF

isi network firewall policies modify

Modify an existing firewall policy.

Syntax

isi network firewall policies modify <id>  
  [--name <string>]
  [--description <string> | --clear-description]
  [--default-action (allow | deny)]
  [--max-rules <integer>]
  [--pools <network_pool_id> | --clear-pools | --add-pools <network_pool_id> | --remove-pools <network_pool_id>]
  [--subnets <network_subnet_id> | --clear-subnets | --add-subnets <network_subnet_id> | --remove-subnets <network_subnet_id>]
  [--live]
  [{--verbose | -v}]

Options

<id>
The policy ID of the firewall policy to modify.
--name <string>
Name of the firewall policy.
--description <string>
Specifies a description of the new policy. This string cannot exceed 128 bytes.
--clear-description
Clears the description of the policy.
--default-action (allow | deny)
Specifies the default action for this firewall policy.
--max-rules <integer>
Maximum number of rules that can be defined in this firewall policy. The value cannot exceed 200.
--pools <network_pool_id>...
The list of pools bound to this firewall policy. Specify --pools for each additional pool.

The <network_pool_id> argument is a string that identifies the ID of a pool consisting of a <groupnet_id>, a <subnet_id> and a pool name, separated by a : or a .. The pool name must be unique to the subnet and consist of supported characters, not to exceed 32 characters.

Examples: groupnetA:subnetA:poolA, groupnetA.subnet1.pool1

--clear-pools
Clears the list of pools to apply to this firewall policy.
--add-pools <network_pool_id>...
Add items to the list of pools to apply to this firewall policy. Specify --add-pools for each additional pool to add.

The <network_pool_id> argument is a string that identifies the ID of a pool consisting of a <groupnet_id>, a <subnet_id> and a pool name, separated by a : or a .. The pool name must be unique to the subnet and consist of supported characters, not to exceed 32 characters.

Examples: groupnetA:subnetA:poolA, groupnetA.subnet1.pool1

--remove-pools <network_pool_id>...
Remove items from the list of pools to apply to this firewall policy. Specify --remove-pools for each additional pool to remove.

The <network_pool_id> argument is a string that identifies the ID of a pool consisting of a <groupnet_id>, a <subnet_id> and a pool name, separated by a : or a .. The pool name must be unique to the subnet and consist of supported characters, not to exceed 32 characters.

Examples: groupnetA:subnetA:poolA, groupnetA.subnet1.pool1

--subnets <network_subnet_id>...
The list of subnets bound to this firewall policy. Specify --subnets for each additional subnet.

The <network_subnet_id> argument is a string that identifies the ID of a subnet consisting of a <groupnet_id> and a subnet name, separated by a : or a .. The subnet name must be unique to the cluster and consist of supported characters, not to exceed 32 characters.

Examples: groupnetA:subnetA_1, groupnetB.subnetB_3
--clear-subnets
Clears the list of subnets to apply to this firewall policy.
--add-subnets <network_subnet_id>...
Add items to the list of subnets to apply to this firewall policy. Specify --add-subnets for each additional pool to add.

The <network_subnet_id> argument is a string that identifies the ID of a subnet consisting of a <groupnet_id> and a subnet name, separated by a : or a .. The subnet name must be unique to the cluster and consist of supported characters, not to exceed 32 characters.

Examples: groupnetA:subnetA_1, groupnetB.subnetB_3
--remove-subnets <network_subnet_id>...
Remove items from the list of subnets to apply to this firewall policy. Specify --remove-subnets for each additional subnet to remove.

The <network_subnet_id> argument is a string that identifies the ID of a subnet consisting of a <groupnet_id> and a subnet name, separated by a : or a .. The subnet name must be unique to the cluster and consist of supported characters, not to exceed 32 characters.

Examples: groupnetA:subnetA_1, groupnetB.subnetB_3
--live
The --live option is used when issuing a command to modify or delete an active custom policy, or to modify the default policy. Changes will take effect immediately on all network subnets and pools associated with this policy.

Using the --live option on an inactive policy will be rejected and will return an error.

{--verbose | -v}
Displays more detailed information.

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\