Example: Blocking Packets with No Flags Set (CLI)

The following example shows how to create the tcp-no-flag screen to block packets with no flags set. The screen is enabled for the zone security zone.

To block packets with no flags set:

1. Configure the tcp-no-flag screen:

   user@host#set security screen ids-option tcp-no-flag tcp tcp-no-flag

2. Enable the screen in the zone security zone:

   user@host#set security zones security-zone zone screen tcp-no-flag

Related Topics

• JUNOS Software Feature Support Reference for SRX Series and J Series Devices