Quote:
Originally Posted by rldeshpande  Thank you very much for your reply.
Yes, it's the initial policy. But this policy has nothing but all the implied rules.
And whenever I create a new policy, same implied rules are present there too.
So I dont know how to create a policy which will allow the traffic.
control_bootsec: Could you please tell me how to use it? I mean when I tried it at the command prompt, I got messages as
root# control_bootsec -r
Disabling boot security
Could not successfully remove boot security
root# control_bootsec -g
Enabling boot security
Could not successfully re-enable boot security
~Rahul |
Hi,
Initial policy is the one that is active when no other policy is pushed to the module and the one that is used during boot up. It means that you need to push a new policy from your smartcenter which includes proper accept rules for your traffic. For example add a rule <src: your mgmt pc> <dst: firewall module> <service: any> <action Accept>. And install this policy on your module via smartdashboard.
control_bootsec is used via cli (just ssh to box or whatever). Its strange that you got errors above that it wasnt able to unload. Remember you have to execute this command on the FIREWALL module, not the smartcenter (since smartcenter dont have any initial policy).
I hope you understand what i mean otw we keep posting :)