policy (Stateful Firewall Rules Next Gen Services)
Syntax
policy policy-name {
match {
application [application-name];
destination-address (address | any);
destination-address-excluded address;
source-address (address | any);
source-address-excluded address;
}
then {
count;
deny;
permit;
reject;
}
}
Hierarchy Level
[edit services policies stateful-firewall-rule rule-name]
Description
Configure one or more policies in a stateful firewall rule. Each policy identifies the matching conditions for a flow, and whether or not to allow the flow. Once a policy in the rule matches a flow, that policy is applied and no other policies in the rule are processed.
Options
| policy-name | Name of the policy. |
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
interface—To view this statement in the configuration.
interface-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 19.3R2.