Junos OS

 View Only
last person joined: yesterday 

Ask questions and share experiences about Junos OS.
  • 1.  SRX Firewall - Rules Global Options

    Posted 04-04-2022 05:40
    On SRX firewall rules, Global Options -> Policy Options -> Default Policy Actions.

    What is the use of this policy? If I define permit all here, that mean access rules have no meaning? What is policy re-match?

    Also under rules , there is a Global rule at the end. What is the purpose of this? Is it related to Global Options?

    ------------------------------
    Avil Tauro
    ------------------------------


  • 2.  RE: SRX Firewall - Rules Global Options

    Posted 04-04-2022 05:49
    The global policies will apply only when there is no more specific policy created in the zone to zone list.

    Policies are selected based on the zone assignment of the ingress and egress interface for the traffic when it arrives on the SRX.
    If any policy is created for that pair of from-zone and to-zone then the policy list is applied and the process is complete.

    If there are no policy at all for that from-zone and to-zone pair, then the policies configured under global apply.

    ------------------------------
    Steve Puluka BSEET - Juniper Ambassador
    IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
    http://puluka.com/home
    ------------------------------