show security group-vpn member policy
Syntax
show security group-vpn member policy <vpn vpn-name> <group-id group-id>
Description
Show Group VPN policies. Group VPNv2 is supported on SRX300, SRX320, SRX340, SRX345, SRX550HM, SRX1500, SRX4100, SRX4200, and SRX4600 Series Firewalls and vSRX Virtual Firewall instances.
Options
| none | Display information for all groups. |
| vpn vpn-name | (Optional) Display policy information for the specified group name. |
| group-id group-id | (Optional) Display policy information for the specified group identifier. |
Required Privilege Level
view
Output Fields
Table 1 lists the output fields for the show security group-vpn member
policy command. Output fields are listed in the approximate
order in which they appear.
Field Name |
Field Description |
|---|---|
Group VPN Name |
Group name. |
Group Id |
Group identifier. |
From-zone |
From zone configured for the policy. |
To-zone |
To zone configured for the policy. |
Tunnel-id |
Tunnel identifier. |
Policy type |
Secure, fail-open, fail-close, or exclude. |
Source |
IP address, port, and protocol of the source traffic. |
Destination |
IP address, port, and protocol of the destination traffic. |
Sample Output
show security group-vpn member policy
user@host> show security group-vpn member policy
Group VPN Name: group1000, Group Id: 1000
From-zone: trust_1, To-zone: untrust
Tunnel-id: 63490, Policy type: Exclude
Source : IP <192.168.0.0 - 192.168.255.255>, Port <0 - 65535>, Protocol <17>
Destination : IP <0.0.0.0 - 255.255.255.255>, Port <0 - 65535>, Protocol <17>
Tunnel-id: 49153, Policy type: Secure
Source : IP 192.168.0.0 - 192.168.255.255>, Port <0 - 65535>, Protocol <0>
Destination : IP <192.0.2.0 - 192.0.2.255>, Port <0 - 65535>, Protocol <0>
Tunnel-id: 49152, Policy type: Secure
Source : IP <192.0.2.0 - 192.0.2.255>, Port <0 - 65535>, Protocol <1>
Destination : IP <192.0.2.0 - 192.0.2.255>, Port <0 - 65535>, Protocol <1>
Tunnel-id: 63491, Policy type: Fail-open (Inactivated)
Source : IP 192.168.0.0 - 192.168.255.255>, Port <0 - 65535>, Protocol <17>
Destination : IP <192.168.0.0 - 192.168.255.255>, Port <0 - 65535>, Protocol <17>
Tunnel-id: 63489, Policy type: Fail-close
Source : IP <0.0.0.0 - 255.255.255.255>, Port <0 - 65535>, Protocol <0>
Destination : IP <0.0.0.0 - 255.255.255.255>, Port <0 - 65535>, Protocol <0>
Release Information
Command introduced in Junos OS Release 15.1X49-D30.