Technical Documentation

[edit services service-set] Hierarchy Level

services {service-set service-set-name {allow-multicast;(cos-rules rule-name | cos-rule-sets rule-set-name);extension-service service-name {provider-specific-rules;}(ids-rules rule-names | ids-rule-sets rule-set-name);interface-service {service-interface interface-name;}(ipsec-vpn-rules rule-names | ipsec-vpn-rule-sets rule-set-name);ipsec-vpn-options {anti-replay-window-size bits;clear-dont-fragment-bit;ike-access-profile profile-name;local-gateway address;no-anti-replay;passive-mode-tunneling;trusted-ca [ ca-profile-names ];tunnel-mtu bytes;}max-flows number;(nat-rules rule-names | nat-rule-sets rule-set-name);next-hop-service {inside-service-interface name.number;outside-service-interface name.number;}(pgcp-rules rule-names | pgcp-rule-sets rule-set-name);(ptsp-rules rule-names | ptsp-rule-sets rule-set-name); service-order {forward-flow [ service-names ];reverse-flow [ service-names ];}service-set-options {bypass-traffic-on-pic-failure;}(stateful-firewall-rules rule-names | stateful-firewall-rule-sets rule-set-name);syslog {host hostname {facility-override facility-name;log-prefix prefix-number;services priority-level;}}}}

Published: 2010-04-28