Allowed or prohibited characters

This section lists the characters that are allowed or prohibited in the various items found in the configuration of your firewall.

Firewall name

The name of the firewall must not exceed 127 characters (allowed characters):

<alphanum> - _ .

Login and password

" <tab> & ~ | = * < > ! ( ) [ ] / \ $ % ? ' ` <space> : ; @ + ,

Password (prohibited characters):

" <tab>

Filter - NAT

Comments and rule separators (prohibited characters):

< > "

Names of network interfaces

The name of an interface must not exceed 15 characters. It cannot contain the following words if they are immediately and only followed by numbers (e.g., ethernet0, dialup123):

loopback ethernet wifi dialup vlan bridge agg ipsec sslvpn gretun gretap

The name of an interface must not begin with any of the following prefixes:

firewall network serial loopback

The name of an interface must not be any of the following reserved words:

ipsec dynamic sslvpn any protected notprotected blackhole

The name of an interface must not contain the following characters (prohibited characters):

@ " # <tab> <space> [ ] < >

Network objects

The name of a network object must not exceed 255 characters (prohibited characters):

<tab> <space> ! " # , = @ [ \ | ]

Names must not contain any of the following prohibited prefixes:

Firewall_ Network_ ephemeral_ Global_

The following names are prohibited:

any internet none anonymous broadcast all

NOTE
Object names are not case sensitive.

Comments must not contain any of the following characters (prohibited characters):

" # < >

DNS (FQDN) name objects

Names must not exceed 255 characters (allowed characters):

<alphanum> . -

Certificates and PKI

Certification authority names (prohibited characters):

/ <tab> " ` % :

Certificate names (prohibited characters):

/ <tab> " ` % :

Short name of a certificate or certification authority (prohibited characters):

/ <tab> " ` % : \

LDAP databases

User names in the LDAP database (prohibited characters):

" <tab> , ; & ~ | = * < > ! ( ) \

User IDs (prohibited characters):

" <tab> & ~ | = * < > ! ( ) \ $ % ? ' ` <space>

WARNING
In external directories such as Microsoft Active Directory, user IDs must comply with the above criteria as well as the criteria imposed by Microsoft.

Group names in the LDAP database (prohibited characters):

<tab> <space> & ~ | = * < > ! ( ) \ $ % ! ' " ‘

LDAP database paths: DN, CA Dn and consort (prohibited characters):

" & ~ | * < > ! ( )

PPTP

PPTP user IDs (allowed characters):

<alphanum> - _ .

Password (prohibited characters):

" <tab>

IPsec VPN

Names of IPsec peers (prohibited characters):

# = @ [ \ ]

Names of IPsec rules (prohibited characters):

. , : { } [ ] = " # \n <tab> <space>

SSL VPN Portal

Server names and aliases (allowed characters):

<alphanum> - _ . :

Prefix of the URL’s root directory (allowed characters):

<alphanum> - _

Quality of Service (QoS)

QoS queues

Names must not exceed 31 characters (prohibited characters):

@ [ ] # ! \ " | = <space> <tab>

Names must not contain any of the following reserved expressions:

internet any any_v4 any_v6 firewall_ network_ broadcast anonymous none all original

Traffic shapers

Names must not exceed 15 characters (prohibited characters):

@ [ ] # ! \ " | = <space> <tab>

E-mail alerts

E-mail addresses - domain names (allowed characters):

<alphanum> ! # $ % & \ * + - / = ? _ ` { } | ~ .

Recipient group names (prohibited characters):

<tab> <space> ! " # , = @ [ \ | ]

IDs used for authentication on the server (prohibited characters):

< >

Web services

Web service names must not exceed 19 characters (allowed characters):