Message Image

Skip main navigation (Press Enter).

SRX

last person joined: 20 hours ago

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

SRX show which traffic is hitting the deny policy

Jump to Best Answer

Gunner24702-19-2016 02:40

Hello, I very often use the 'show security flow session' to see traffic being permitted and creating ...

Abed AL-R02-19-2016 02:54Best Answer

Hi, show security flow session will show you also by which policy traffic permited or debied However, ...

Abed AL-R02-19-2016 03:01

Hi, See also this kb might be helpful if you want to log the default denied traffic https://kb. ...

1. SRX show which traffic is hitting the deny policy

0 Recommend
Gunner247
Posted 02-19-2016 02:40

Reply Reply Privately
Hello,

I very often use the 'show security flow session' to see traffic being permitted and creating a session. However, What do you use to show traffic which is hitting the deny policy ??

Many Thanks,

Nick
2. RE: SRX show which traffic is hitting the deny policy
Best Answer

0 Recommend
Abed AL-R
Posted 02-19-2016 02:54

Reply Reply Privately
Hi,

show security flow session will show you also by which policy traffic permited or debied

However, you can use also the "show security match-policies ... "
3. RE: SRX show which traffic is hitting the deny policy

0 Recommend
Abed AL-R
Posted 02-19-2016 03:01

Reply Reply Privately
Hi,

See also this kb might be helpful if you want to log the default denied traffic

https://kb.juniper.net/InfoCenter/index?page=content&id=KB28109&smlogin=true&actp=search

Powered by Higher Logic