Created
November 5, 2016 02:28
-
-
Save jrotello/20b76ed3084776751b84a86b02f0f31a to your computer and use it in GitHub Desktop.
USG IP Camera Firewall Rules
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set firewall name WAN_OUT default-action accept | |
| set firewall name WAN_OUT description "packets from intranet to internet" | |
| set firewall name WAN_OUT rule 5 action accept | |
| set firewall name WAN_OUT rule 5 description "Allow NTP on IP Cameras" | |
| set firewall name WAN_OUT rule 5 log enable | |
| set firewall name WAN_OUT rule 5 protocol tcp_udp | |
| set firewall name WAN_OUT rule 5 source group address-group ip_cameras | |
| set firewall name WAN_OUT rule 5 source port 123 | |
| set firewall name WAN_OUT rule 10 action drop | |
| set firewall name WAN_OUT rule 10 description "Block IP Cameras" | |
| set firewall name WAN_OUT rule 10 log enable | |
| set firewall name WAN_OUT rule 10 protocol all | |
| set firewall name WAN_OUT rule 10 source group address-group ip_cameras | |
| set interfaces ethernet eth0 firewall out name WAN_OUT |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment