JUNIPER DUMP‎ > ‎

Juniper SRX commands cheat sheet

posted 9 Apr 2016, 23:34 by DR Labs   [ updated 16 Jun 2016, 01:15 by Donald Ross ]

## show detail on a security policy ##

run show security policies from-zone inside to-zone outside detail

Policy: internet_path, action-type: permit, State: enabled, Index: 30, Scope Policy: 0
  Policy Type: Configured
  Sequence number: 18
  From zone: inside , To zone: outside 
  Source addresses:
    PC1(global): 10.10.10.10/32
  Destination addresses:
    Host_10.1.1.134(global): 10.11.1.134/32
    Host_10.11.1.133(global): 10.11.1.133/32
  Application: DB
    IP protocol: tcp, ALG: 0, Inactivity timeout: 1800
      Source port range: [0-0]
      Destination port range: [50304-50304]
  Per policy TCP Options: SYN check: No, SEQ check: No
  Session log: at-create
  Policy statistics:
    Input  bytes     :                    0                    0 bps
    Output bytes     :                    0                    0 bps
    Input  packets   :                    0                    0 pps
    Output packets   :                    0                    0 pps
    Session rate     :                    0                    0 sps
    Active sessions  :                    0
    Session deletions:                    0
    Policy lookups   :                    0

##  ##

show applications | find DB

application DB {
    term t1 protocol tcp destination-port 50304;

##  ##

show security match-policies from-zone trust source-ip 10.0.0.2 source-port 55555 to-zone untrust destination-ip 172.16.0.9 destination-port 22 protocol tcp

####

show route table XXX advertising protocol bgp (next hop neighbor address)

####

monitor interface XXX

####

show cli history

###



Comments