policies {
        from-zone trust to-zone untrust {
                match {
                    source-address any;
                    application [ junos-http junos-https ];
                }
                then {
                    permit;
                    log {
                        session-init;
                        session-close;
                    }
                }
            }
            policy Allow_Internet {
                match {
                    source-address any;
                    destination-address any;
                    application [ junos-http junos-http-ext junos-https ];
                }
                then {
                    permit;
                    log {
                        session-init;
                        session-close;
                    }
                }
            }
        }
        default-policy {
            deny-all;
        }
    }
    zones {
        security-zone untrust {
            interfaces {
                ge-0/0/0.0;
            }
        }
        security-zone trust {
            interfaces {
                ge-0/0/1.0 {
                    host-inbound-traffic {
                        system-services {
                            all;
                        }
                        protocols {
                            all;
                        }
                    }
                }
            }
        }
    }
}
interfaces {
    ge-0/0/0 {
        unit 0 {
            family inet {
                address 192.168.250.5/24;
            }
        }
    }
    ge-0/0/1 {
        unit 0 {
            family inet {
                address 172.16.0.1/16;
            }
        }         
    }
    ge-0/0/2 {
        disable;
    }
    ge-0/0/3 {
        disable;
    }
    ge-0/0/4 {
        disable;
    }
    ge-0/0/5 {
        disable;
    }
    ge-0/0/6 {
        disable;
    }
    ge-0/0/7 {
        disable;
    }
}
routing-options {
    static {
        route 0.0.0.0/0 next-hop 192.168.250.2;
    }
}