Navigation
Supported Platforms
Related Documentation
- EX, J, M, MX, PTX, SRX, T Series
- Notational Conventions Used in Junos OS Configuration Hierarchies
- EX, J, M, MX, QFX, SRX, T Series
- [edit security] Hierarchy Level
[edit security policies] Hierarchy Level
security {policies {default-policy {(deny-al | permit-all);}from-zone zone-name to-zone zone-name {... the from-zone subhierarchy appears after the main [edit security policies] hierarchy ...}policy-rematch;traceoptions {file <filename> <files number> <match regular-expression> <size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}} policies {from-zone zone-name to-zone zone-name {policy policy-name {match {application [ application-names-or-sets ];destination-address [ addresses <any> ];source-address [ addresses <any> ];}scheduler-name scheduler-name;then {count {alarm per-second-threshold bytes per-minute-threshold kilobytes;}(deny | permit {... configuration shown just following ...} | reject);permit {application-services {idp;redirect-wx;reverse-redirect-wx;utm-policy;}destination-address {drop-translated;drop-untranslated;}destination-nat nat-name;firewall-authentication {pass-through {access-profile profile-name;client-match user-or-group-name;web-redirect;}web-authentication (client-match user-or-group-name;}}source-nat {(interface | pool pool-name | pool-set pool-set-name);}tunnel {ipsec-vpn vpn-name;pair-policy policy-name;}}log {session-close;session-init;}}}}}}
Related Documentation
- EX, J, M, MX, PTX, SRX, T Series
- Notational Conventions Used in Junos OS Configuration Hierarchies
- EX, J, M, MX, QFX, SRX, T Series
- [edit security] Hierarchy Level
Published: 2013-07-31
Supported Platforms
Related Documentation
- EX, J, M, MX, PTX, SRX, T Series
- Notational Conventions Used in Junos OS Configuration Hierarchies
- EX, J, M, MX, QFX, SRX, T Series
- [edit security] Hierarchy Level
