show security policies policy set
Syntax
show security policies policy-set
Description
Displays a summary of all policy set you have created for inner session tunnel inspection for EVPN-VXLAN tunnel traffic.
Required Privilege Level
view
Output Fields
show security policies policy-set Output Fields
Field Name |
Field Description |
---|---|
|
Name of the source zone. |
|
Name of the destination zone. |
|
Name of the policy-set |
|
Status of the policy:
|
|
Internal number associated with the policy. |
|
Number of the policy within a given context. For example, three policies that are applicable in a from-zoneA-to-zoneB context might be ordered with sequence numbers 1, 2, 3. Also, in a from-zoneC-to-zoneD context, four policies might have sequence numbers 1, 2, 3, 4. |
Scope Policy | Policy identifier. |
Log Profile ID | Internal log profile number. |
from-zone | source zone of the traffic. |
to-zone | Destination zone of the traffic. |
|
Source virtual routing and forwarding (VRF). One or many source VRF instances, for example, the VRF routing instance associated with an incoming packet |
|
Destination (VRF) . One or many destination VRF instances. |
Source address |
For standard display mode, the names of the source addresses for a policy. Address sets are resolved to their individual names. |
Destination Address | Name of the destination address (or address set) as it was entered in the destination zone’s address book. |
Application | Name of a preconfigured or custom application whose type the packet matches, as specified at configuration time. |
Source identity feeds |
One or more user roles specified for a policy. |
Destination identity feeds |
One or more user roles specified for a policy. |
Action |
The action taken for a packet that matches the policy’s tuples. Actions include : deny reject permit |
Sample Output
show security policies policy-set
user@host> show security policies policy-set
From zone: PSET-1, To zone: PSET-1 Policy: PSET-1-P1, State: enabled, Index: 5, Scope Policy: 0, Sequence number: 1, Log Profile ID: 0 From zones: any To zones: any Source vrf group: any Destination vrf group: any Source addresses: a2-untrust Destination addresses: a2-trust Applications: any Source identity feeds: any Destination identity feeds: any Action: permit, application services
Release Information
Command introduced in Junos OS Release 21.1R1.