After referring to http://kb.juniper.net/InfoCenter/index?page=content&id=KB16509&actp=search
I am still not seeing traffic that is denied. I'm guessing I am missing something in the security policy itself?
here is what I have as an example ... am I missing something?
from-zone untrust to-zone test {
policy 33 {
match {
source-address [ test_Users testFixInternal ];
destination-address testSecuredNet;
application any;
}
then {
permit;
log {
session-init;
}
}
}
I have the following (under syslog), but I am only able to see traffic-log but not blocked-traffic
file blocked-traffic {
any any;
match RT_FLOW_SESSION_DENY;
}
file traffic-log {
any any;
match RT_FLOW_SESSION;
}
show log traffic-log (shows tons)
show log blocked-traffic (shows nothing)
show log traffic-log | match DENY (shows nothing)