Hi Marcelo,
Thanks for posting your query here.
I looked through teh snippet of your configruation and it looks fine and should work as you expect it i.e. block the telnet connection from a soure not mentioned in the firewall filter.
But somehow this seems to be not working in your case and to investigate on this could you please provide the below information-
- What is the software version running on SRX
- Configruation form the SRX (if possible)
- Flow traceoptions for the traffic which should not be working.
Configruation for Flow traceoptions:-
set security flow traceoptions file Telnet-test size 1m files 5
set security flow traceoptions flag basic-datapath
set security flow traceoptions flag packet-drops
set security flow traceoptions packet-filter pf1 source-address <source_ip> destiantion-address<dest_ip>
set security flow traceoptions packet-filter pf2 source-address <source_ip> destiantion-address<dest_ip> ----- > (This is for tracting the revers traffic so please use NATed Ip addersses for source and destiantion if any)
You can view the above logs with the help of the command "show log Telnet-test".
Awaiting your response.
Thanks and Regards,
Pulkit Bhandari