Removes a filter rule from the filter table.
rmfilt -v 4|6 -n fid | all [-f]
Use the rmfilt command to remove filter rules from the filter rule table. Actions by this command will not effect the IP Security subsystem until the mkfilt command is executed. IPsec filter rules for this command can be configured using the genfilt command, IPsec smit (IP version 4 or IP version 6), or Web-based System Manager in the Virtual Private Network submenu.
The rmfilt command removes a filter rules from the filter rule table. Only manual filter rules can be removed.
Item | Description |
---|---|
-f | Force to remove auto-generated filter rules. -f flag works with -n all to remove all the filter rules (user-defined and auto-generated filter rules) except rule number 1 for IP version 4. |
-n | The ID of the filter rule you want to remove from the filter rule table. For IP version 4, the value of 1 is invalid for this flag, that is a reserved filter rule. If all is specified, all the user defined filter rules will be removed until the -f flag is specified. |
-v | IP version of the filter rule you want to remove. Value 4 specifies IP version 4. Value 6 specifies IP version 6. |
Attention RBAC users and Trusted AIX® users: This command can perform privileged operations. Only privileged users can run privileged operations. For more information about authorizations and privileges, see Privileged Command Database in Security. For a list of privileges and the authorizations associated with this command, see the lssecattr command or the getcmdattr subcommand.