Configuration Mode Commands : SteelHead Configuration Commands : In-Path and Virtual In-Path Support Commands : in-path rule edit deny
  
in-path rule edit deny
Edits an in-path rule that rejects connection requests.
Syntax
in-path rule edit rulenum <rule-number> deny [srcaddr {<ip-address>| all-ip |all-ipv4 | all-ipv6}] [dstaddr <ipv4-addr>| <ipv6-addr> | all-ip |all-ipv4 | all-ipv6>}] [dstport <port>] [vlan <vlan-tag-id>] [rule-enable {true | false}] [description <description>]
Parameters
rulenum <rule-number>
Specifies the rule number to edit: 1-N or start or end.
srcaddr <ip-address>
Specifies the source subnet IP address and netmask. Use the format XXX.XXX.XXX.XXX/XX for IPv4 and X:X:X::X/XXX for IPv6.
srcaddr all-ip
Specifies all IPv4 and all IPv6 addresses. This is the default.
srcaddr all-ipv4
Specifies all IPv4 addresses.
srcaddr all-ipv6
Specifies all IPv6 addresses.
dstaddr <ip-address>
Specifies the destination subnet IP address and netmask. Use the format XXX.XXX.XXX.XXX/XX for IPv4 and X:X:X::X/XXX for IPv6.
dstaddr all-ip
Specifies all IPv4 and all IPv6 addresses. This is the default.
dstaddr all-ipv4
Specifies all IPv4 addresses.
dstaddr all-ipv6
Specifies all IPv6 addresses.
dstport <port>
Specifies a single port (number), a port label, or all to specify all ports.
vlan <vlan-tag-id>
Specifies the VLAN tag ID (if any). The VLAN tag ID is a number with a range from 0 to 4094. Specify 0 to mark the link untagged.
rule-enable true
Enables an in-path rule.
rule-enable false
Disables an in-path rule.
description <description>
Specifies a description to facilitate network administration.
Usage
Use this command to add an in-path rule that rejects connection requests.
Example
amnesiac (config) # in-path rule edit rulenum 5 deny srcaddr 10.0.0.1/24 dstaddr 10.0.0.2/24 description test
Product
Interceptor, SteelHead CX, SteelHead EX, SteelHead-v, SteelHead-c
Related Commands
in-path rule deny, show in-path, show in-path rules