network_stuff:juniper:srx
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| network_stuff:juniper:srx [2017/09/28 18:50] – jotasandoku | network_stuff:juniper:srx [2023/11/02 14:38] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 93: | Line 93: | ||
| * irb export term (called iBGP-export in the slingshots) | * irb export term (called iBGP-export in the slingshots) | ||
| - | To allow communication: | + | Note that in packet mode, no security policies are allowed, no point on defining zones either.. [[http:// |
| + | |||
| + | |||
| + | If we are in flow mode, To allow communication: | ||
| Put all interfaces in the same zone: | Put all interfaces in the same zone: | ||
| Line 103: | Line 106: | ||
| set security policies from-zone trust to-zone trust policy trust-to-trust match source-address any destination address any application any | set security policies from-zone trust to-zone trust policy trust-to-trust match source-address any destination address any application any | ||
| set security policies from-zone trust to-zone trust policy trust-to-trust then permit | set security policies from-zone trust to-zone trust policy trust-to-trust then permit | ||
| + | |||
| + | |||
| + | ---- | ||
| + | |||
| + | **SRX DIRECTORIES**\\ | ||
| + | * /junos : This is a read-only dir created in runtime by malloc. Expected to be 100%. See [[https:// | ||
network_stuff/juniper/srx.1506624629.txt.gz · Last modified: (external edit)
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
