SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  Firerwall Filter Source Destination

    Posted 11-03-2015 15:43

    When a firewall filter is evaluated, does the filter evaluate it based on the source AND desination or source OR destination.  I just need some clarification.

     

    Thanks.

     



  • 2.  RE: Firerwall Filter Source Destination

     
    Posted 11-03-2015 15:50

    Hi,

     

    Within the term the match criteria is AND, the individual terms within a filter are OR.

     

    Tim



  • 3.  RE: Firerwall Filter Source Destination

    Posted 11-03-2015 16:19

    Hmm, so, if you hvae a statement like this: 

     

    set firewall family inet filter QoS-int-in term voice_in from source-address 10.160.0.0/15
    set firewall family inet filter QoS-int-in term voice_in from destination-address 10.100.0.0/15

     

    Is 10.160.0.0/15  and 10.100.0.0/15 match or does it read each individually?

     

    Thanks for the quick response!!

     



  • 4.  RE: Firerwall Filter Source Destination
    Best Answer

     
    Posted 11-03-2015 16:32

    Hi,

     

    The packet that is being process through the filter must have a source of 10.160/15 AND destination of 10.100/15.

     

    Tim



  • 5.  RE: Firerwall Filter Source Destination

    Posted 11-03-2015 16:34

    Thanks Tim!