Forum Discussion

epaalx's avatar
epaalx
Icon for Cirrus rankCirrus
Jul 29, 2022

Reset counters/statistics for IP management interface using network firewall rules?

Whilst "K46122561: Restrict access to the BIG-IP management interface using network firewall rules" show TMSH command to provision, I'm unable to find the command to reset hit counters/statistics shown using "show /security firewall management-ip-rules". Is there such?

5 Replies

  • Network firewall rules provide additional flexibility when configuring security for the management interface. You can configure the action to accept, drop, or reject incoming connections based on the protocol, source ports and IP addresses, and destination ports and IP addresses. For example, you can configure a positive security posture by creating rules that allow access to specific ports on the management interface from specific hosts on your network. The last rule you create in the rule list is an inclusive rule that drops all traffic destined to the management interface. As a result, the BIG-IP system drops any traffic that does not match an allow rule. PFMLogin

  • To reset hit counters/statistics for IP management interface using network firewall rules, use the following TMSH command: Replace <rule-name> with the name of the specific rule for which you want to reset the statistics. paybyplatema

     

     

  • Certainly, to reset hit counters/statistics for the IP management interface using network firewall rules, employ the TMSH command, replacing "<rule-name>" with the specific rule you wish to reset. Demon Slayer PJ