...
- Normal response codes: 200
- Error response code: 404
Response Parameters
forwardingName In Type Description name body string (Required)
destfamilyrule name src body string (Required) traffic source zone src_ip body string (Required) traffic destination zone
Protocol family (Match incoming traffic from the specified source ip address src_mac body string ipv4,ipv6orany) to generate iptables rules for.Match incoming traffic from the specified mac address src_port body port or range Match incoming traffic from the specified source port or port range proto body string Match incoming traffic using the given protocol. Can be one of tcp,udp,tcpudp,udplite,icmp,esp,ah,sctp, orallicmp_type body string For protocol icmpselect specific icmp types to match.dest body string traffic destination zone. Must refer to one of the defined zone names, or * for any zone dest_ip body string Match incoming traffic directed to the specified destination ip address dest_port body port or range Match incoming traffic directed at the given destination port or port range mark body string If specified, match traffic against the given firewall mark target body string (Required) Firewall action ( ACCEPT,REJECT,DROP,MARK,NOTRACK) for matched trafficset_mark body string Zeroes out the bits given by mask and ORs value into the packet mark. set_xmark body string Zeroes out the bits given by mask and XORs value into the packet mark family body string Protocol family ( ipv4,ipv6orany) to generate iptables rules forextra body string Extra arguments to pass to iptables. Useful mainly to specify additional match options, such as -m policy --dir infor IPsec.- Response Example
{
"name":"REJECT_LAN_80"
"src":"lan",
"src_ip": "192.168.1.2",
"src_port": "80",
"proto":"tcp",
"target":"REJECT"
}
...