[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

reject

Syntax

reject;

Hierarchy Level

[edit security policies from-zone zone-name to-zone zone-name policy policy-name then]

Release Information

Statement introduced in Release 8.5 of JUNOS software.

Description

Block the service at the firewall. The device drops the packet and sends a TCP reset (RST) segment to the source host for TCP traffic and an ICMP “destination unreachable, port unreachable” message (type 3, code 3) for UDP traffic. For types of traffic other than TCP and UDP, the device drops the packet without notifying the source host, which is also what occurs when the action is deny.

This statement is supported on J-series and SRX-series devices.

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

[an error occurred while processing this directive]