Installing and configuring a WatchGuard appliance
WatchGuard Command Line Interface Guide
21
To create and apply security policies
To create and apply security policies, use these commands:
WG(config)#cert
request and import needed certificates
from CA’s
WG(config)#denial_of_service
customize anti-hacker protection for
this appliance
WG(config)#high_availability
set up and activate a high-availability
system, using the High Availibility
feature
WG(config)#log
includes event, traffic and alarm log
files
Command
Description
Command
Description
WG(config)#address
create all the needed address groups for
use in policies
WG(config)#service
add new services or groups of related
services
WG(config-ike)#action
create IKE actions for use in IKE
policies)
WG(config-ike)#policy
create IKE policies for use in IPSec
policies
WG(config-ipsec)#action
create IPSec actions for use in IPSec
proposals
WG(config-ipsec)#proposal
create IPSec proposals for use in
security policies
WG(config)#nat
create NAT actions (DNAT, SNAT or
VIP) for use in policies
WG(config)#vlan
create VLAN IDs for use in policies
WG(config-qos)#action
create QoS actions for use in policies
WG(config)#schedule
create schedules for application to
specific policies