Can anyone please tell me how many security policies,NAT,Zones can be reserved and for logical system. Is there any limitations?
Thanks in advance
Limit is total number of policies, NAT and zones on the SRX.
The master administrator can configure a security profile for the master logical system that specifies the maximum and reserved numbers of security policies applied to the master logical system. The number of policies configured in the master logical system count toward the maximum number of policies available on the device
The master administrator configures the maximum and reserved numbers of security policies for each user logical system. The user logical system administrator can then create security policies in the user logical system. From a user logical system, the user logical system administrator can use the show system security-profile policy command to view the number of security policies allocated to the user Logical system.
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too
There is no limit specific to Logical system. You can even assign all resources to the logical system.
root# run show log nsd_chk_only | match "Max Policy" Max Policy = 80000 Max Policy Context = 8192 Max Policy per Context = 80000 =====> Maximum policy supported on deviceroot# set system security-profile TEST policy maximum ?Possible completions: <maximum> Maximum allowed quota (0..80000) =====> Maximum policy can be allocated to logical systemroot#