firewall.pl script

Last Updated : Jun 10, 2026 |

The firewall.pl script enables you to specify which network interfaces are used for the system management and client traffic types.

If you run the command without arguments, the out-of-band management settings are reset to the default configuration, where all traffic types use all network interfaces. This can be helpful if the network interface you selected for system management traffic is not reachable.

The script is located in the /opt/Avaya/CallSignallingAgent/<version>/CAS/<version>/os/security/ directory.

Syntax

sudo ./firewall.pl [--oam={<OAM_interface>|all}] [--custom={<Client_interface>|all]} [--block_ssh={y|n}] [--print_ports]

--oam: Sets a network interface for system management traffic. For example, eth1. If you want to use all interfaces for system management traffic, enter all.
--custom: Sets a network interface for client traffic. For example, eth0. If you want to use all interfaces for client traffic, enter all.
--block_ssh: Specifies whether Avaya Aura® Web Gateway blocks SSH traffic on the network interface that is used for client traffic. To allow SSH traffic, enter y. To block SSH traffic, enter n.
--print_ports: Prints the current firewall configuration.

Example

The following command enables client traffic on all configured network interfaces, sets the eth1 network interface for system management traffic, and allows SSH traffic on the system interface that is used for client traffic.

sudo ./firewall.pl --oam=eth1 --custom=all --block_ssh=n

Send Feedback

AVAYA DOCUMENTATION CENTER

No results found

AVAYA DOCUMENTATION CENTER

No results found

Administering the Avaya Aura® Web Gateway

firewall.pl script

Syntax

Example