SRX

  • 1.  Difference between 0.0.0.0/0 and 'any'?

    Posted 02-27-2014 04:57

    Hello all,

     

    I've been trying to find out if SRX considers 0.0.0.0/0 and 'any' differently, as applying to policies and nat statements with source/destination-addresses. I've searched high and low but since the keyword 'any' appears so often in articles I haven't found the answer.

     

    Thanks!



  • 2.  RE: Difference between 0.0.0.0/0 and 'any'?
    Best Answer

    Posted 02-27-2014 08:12

    I don't have an article on this for you but they are essentially the same thing.

     

    Consider a policy or NAT rule as you said, if you were to create an address book entry for 0.0.0.0/0 called "All_IPs" and referenced it in your rules, it would be the same thing.

     

    You may use 0.0.0.0/0 in a firewall  filter rule to block all access except for management with an "except" rule then for your management IP range.

     

    http://www.juniper.net/techpubs/en_US/junos13.3/topics/concept/firewall-filter-stateless-match-conditions-address-fields.html

     



  • 3.  RE: Difference between 0.0.0.0/0 and 'any'?

    Posted 02-27-2014 08:16

    Thanks for your reply. That helps.