SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  Finding Policies using | find

    Posted 10-31-2014 04:28

    Is there a better way to find policies quickly?

     

    I have a very large rule base accross several firewalls.  When I try to find a policy which has an object used in source or destination i use this command

     


    {primary:node1}[edit security policies from-zone Untrust to-zone Trust]
    root@My_First_Firewall# show | find My_Object

     

    It gives me a result but cuts off the top line which means I can not see the policy number.

    then I have to note the next policy and do a show and find the policy about the one I noted.

     

    There must be an easier way 🙂

     



  • 2.  RE: Finding Policies using | find
    Best Answer

    Posted 10-31-2014 04:42

    Hi  ToucanzooX ,

     

    You can try this configuration mode:

     

    show security policies | display set | match My_Object

     

     

    Pipe symbol and match will list all the configuration related to that searched object .

     

    Regards
    rparthi
     

    Please Mark My Solution Accepted if it Helped, Kudos are Appreciated Too

     



  • 3.  RE: Finding Policies using | find

    Posted 10-31-2014 04:47

    Yes, that has worked for me, I can see the policy number now.

     

    I have tried so many combinations but I did not think fo this one.



  • 4.  RE: Finding Policies using | find

    Posted 10-31-2014 04:45

    use the "display-set" in conjunction with | match like this:

     

    show | display set | match My_Object

     

    Ron