Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
What are the limits of a firewall rule? Suppose I want to create a rule blocking 500 networks? 1000 networks?
Performance impact? This is an ISG1000.
Hi,
The ISG 1000 supports a maximum of 10,000 policies.
http://www.juniper.net/us/en/local/pdf/datasheets/1100036-en.pdf
-John
That wasn't quite the question (though useful info).
How many lines can a single rule have? Can I reject 1000 networks in a single rule?
And any idea the impact this may have? Performance? Session count or creation hit?
OK, my bad. You would need to look at the max amount of Address Book entries since these Address Objects would most likely be added to a group and then the group(s) added to a policy. The below should help.
http://kb.juniper.net/index?page=content&id=KB5296&actp=search&searchid=1277254871977