-
show security zones
-
<detail | terse>
-
< zone-name >
Command introduced in Release 8.5 of JUNOS software.
Display information about security zones.
This command is supported on J-series and SRX-series devices.
none—Display information about all zones.
detail | terse—(Optional) Display the specified level of output.
zone-name —(Optional) Display information about the specified zone.
view
Table 94 lists the output fields for the show security zones command. Output fields are listed in the approximate order in which they appear.
Table 94: show security zones Output Fields
user@host> show security zones
Functional zone: management
Policy configurable: No
Interfaces bound: 1
Interfaces:
ge-0/0/0.0
Security zone: Host
Send reset for non-SYN session TCP packets: Off
Policy configurable: Yes
Interfaces bound: 1
Interfaces:
fxp0.0
Security zone: abc
Send reset for non-SYN session TCP packets: Off
Policy configurable: Yes
Interfaces bound: 1
Interfaces:
ge-0/0/1.0
Security zone: def
Send reset for non-SYN session TCP packets: Off
Policy configurable: Yes
Interfaces bound: 1
Interfaces:
ge-0/0/2.0
Security zone: junos-global
Send reset for non-SYN session TCP packets: Off
Policy configurable: Yes
Interfaces bound: 0
Interfaces:
user@host> show security zones abc
Security zone: abc
Send reset for non-SYN session TCP packets: Off
Policy configurable: Yes
Interfaces bound: 1
Interfaces:
ge-0/0/1.0
user@host> show
security zones abc detail
Security zone: abc
Send reset for non-SYN session TCP packets: Off
Policy configurable: Yes
Interfaces bound: 1
Interfaces:
ge-0/0/1.0
user@host> show
security zones terse
Zone Type my-internal Security my-external Security dmz Security my-shared-external Security
user@host> show
security zones my-shared-external
Security zone: my-shared-external, Shared
send reset for non SYN non session TCP packets : On
IP/TCP reassembly for ALG on traffic from/to this zone: Yes
Policy Configurable: Yes
Interfaces bound:1.
ge-0/1/1.0
IP classification: Disabled.