show services policies detail
Syntax
show services policies detail
Description
Display detailed information about configured services policies.
Required Privilege Level
view
Output Fields
Table 1 lists the output fields for the show services policies
detail command. Output fields are listed in the approximate
order in which they appear.
Field Name |
Description |
|---|---|
|
|
|
|
|
|
|
Status of the policy:
|
|
Internal number associated with the policy. |
|
|
|
|
|
Number of the policy within a given context. For example, three policies that are applicable in a from-zoneA-to-zoneB context might be ordered with sequence numbers 1,2,3. Also, in a from-zoneC-to-zoneD context, four policies might have sequence numbers 1,2,3,4. |
|
|
|
Service set name. |
|
Interface name. |
|
The names and corresponding IP addresses for the policy. Address sets are resolved to their individual address name-IP address pairs. |
|
Name of the destination address (or address set) as it was entered in the destination zone’s address book. A packet’s destination address must match this value for the policy to apply to it. |
|
|
|
|
|
|
|
|
|
|
|
Sample Output
show services policies detail
user@host> show services policies detail
Default policy: deny-all
Policy: p1, action-type: permit, State: enabled, Index: 1007, Scope Policy: 0
Policy Type: Configured
Sequence number: 1
Stateful firewall rule: sfw1, Service set: JNPR-NH-SSET, Interface: vms-0/2/0, Match Direction: input
Source addresses:
any-ipv4(global): 0.0.0.0/0
Destination addresses:
any-ipv4(global): 0.0.0.0/0
any-ipv6(global): ::/0
Application: junos-ftp
IP protocol: tcp, ALG: ftp, Inactivity timeout: 1800
Source port range: [0-0]
Destination port range: [21-21]
Per policy TCP Options: SYN check: No, SEQ check: No, Window scale: No
Policy: p2, action-type: permit, State: enabled, Index: 1008, Scope Policy: 0
Policy Type: Configured
Sequence number: 2
Stateful firewall rule: sfw1, Service set: JNPR-NH-SSET, Interface: vms-0/2/0, Match Direction: input
Source addresses:
any-ipv4(global): 0.0.0.0/0
any-ipv6(global): ::/0
Destination addresses:
any-ipv4(global): 0.0.0.0/0
any-ipv6(global): ::/0
Application: any
IP protocol: 0, ALG: 0, Inactivity timeout: 0
Source port range: [0-0]
Destination port range: [0-0]
Per policy TCP Options: SYN check: No, SEQ check: No, Window scale: No
Release Information
Command introduced in Junos OS Release 19.3R2.