Hi.
I have a problem. When I configure policy all_temp - I can connect from inet to address x.x.157.24 on port 80:
root@ROUTER_TOP# show security policies from-zone untrust to-zone trust policy all_temp
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
If I deactivate this rule and configure as bellow I can't connect to 80 port to address x.x.157.24:
root@ROUTER_TOP# show security policies from-zone untrust to-zone trust policy TO_157_24
match {
source-address any;
destination-address 157.24;
application [ WWW junos-http ];
}
then {
permit;
}
[edit applications application WWW]
root@ROUTER_TOP# show
protocol tcp;
destination-port 80;
root@ROUTER_TOP# show security zones security-zone trust address-book address 157.24
x.x.157.24/32;
What deference if I configure to permit all - I can connect. If I try to configure to permit traffic to 157_24 port 80 - I can't connect.
Thanks!