ScreenOS Firewalls (NOT SRX)
Blogs
Discussion Forums
Programs & Events
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Reply
Topic Options
ye_line
Contributor
ye_line
Posts: 26
Registered: ‎04-22-2010
0

Default policy For SSG

Options

‎04-29-2010 07:32 PM

Hi There:

 

may advise the default policy in the following platform, global policy is permit or deny  :

 

SSG5  

SSG20

SSG140

SSG320M

SSG350M

SSG520M

SSG550M

 

Thanks for any feedback.

 

Bin

 

 

Message 1 of 3 (4,847 Views)
 
Reply
Super Contributor
ELKIM
Posts: 227
Registered: ‎12-01-2008
0

Re: Default policy For SSG

Options

‎04-29-2010 08:10 PM

Hi

 

if im not wrong all juniper firewall have default policy with deny action

 

thanks


EL

Message 2 of 3 (4,846 Views)
 
Reply
Distinguished Expert
Distinguished Expert
spuluka
Posts: 1,612
Registered: ‎03-30-2009
0

Re: Default policy For SSG

Options

‎04-30-2010 02:28 PM

The defaut policy for any zone to zone traffic is deny.  You can override this select by placing a default allow rule at the bottom of the policy stack.

 

When you create a zone the default setting is to allow intrazone traffic but you can change that to deny as part of the zone configuration.

Steve Puluka BSEET
Juniper Ambassador
Senior Network Engineer
JNCIA-ER JNCIA-EX JNCIS-SEC JNCIP-SEC
JNCIS-FWV JNCIS-SSL
MCP - Managing Server 2003 MCP - Windows XP Professional
MCTS Windows 7
http://puluka.com/home
Message 3 of 3 (4,825 Views)
 
Reply
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.