traceoptions (Services UAC)
Syntax
traceoptions {
file {
filename;
files number;
match regular-expression;
size maximum-file-size;
(world-readable | no-world-readable);
}
flag flag;
no-remote-trace;
}
Hierarchy Level
[edit services unified-access-control ]
Description
Define Unified Access Control (UAC) tracing options.
Use this statement when you are configuring the SRX Series Firewall to act as a Junos OS Enforcer in a Unified Access Control (UAC) deployment. When deployed as a Junos OS Enforcer, the SRX Series Firewall enforces the policies that are defined on the UAC’s IC Series UAC Appliance.
Options
flag—Trace operation to perform.
To specify more than one trace option, include multiple flag statements.
all—Trace with all flags enabledconfig—Trace configuration information for all UAC-related configurations. This includes all configuration controlled through theunified-access-controlstatements at theedit serviceshierarchy level. It also includes other standard Junos OS configurations required for UAC enforcement such as zones, policies, and interfaces.connect—Trace communications between the Junos OS Enforcer and the IC Series appliance, including SSL handshakes and timeouts.ipc—Trace interprocess communications. Use this option to trace communications between the Routing Engine (RE) and the UACD enforcement plugin inside the Packet Forwarding Engine (PFE).
Required Privilege Level
services—To view this statement in the configuration.
services-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 9.4.