I'm having trouble getting my security policies to log anything.
I have a J2320 running 10.4R11.4.
Here are how my rules are set up:
security {
policies {
from-zone untrust to-zone asa {
policy inet_to_asa_hosts {
match {
source-address any;
destination-address ASA-Non-Juniper;
application any;
}
then {
permit;
}
}
I have found a lot of docs that discuss logging, I just can't find anything that is related to how our rules are set up.
What I'm trying to do is log when a rule blocks traffic for troubleshooting.
Thanks for any help.