Junos Space Developer
Highlighted
Junos Space Developer

sync security policy from one SRX to another SRX but change some element

‎07-31-2018 12:10 AM

currently we need to sync security policy from SRX1 to SRX2 ,but need to change some elements in policy(maybe map zone name in SRX1 to another zone name in SRX2)

 

any suggestion how to achieve this or does JUNIPER has solution to do this

JNCIE-SP/JNCIP-SEC/CCNP
1 REPLY 1
Junos Space Developer

Re: sync security policy from one SRX to another SRX but change some element

‎03-09-2019 11:34 PM

Hi ,

 

You can do this from Junos Space. You need to discover both the SRX1 and SRX2 device in Space. Go to Security Director application. Import the current Security policies from the SRX1- FW policies.

Now from the imported policies in SD-> Configure -> FW policies tab, select the policy -> Right Click and create a clone of the policy.

You will have a new policy cloned with all the rules from the SRX1 device. Now assign this newly cloned policy to SRX2. Make the changes related to zones , addresses, application etc as per your need and then Publish and Update. That will push the security policies to the SRX2 device.

 

Simple and Easy from Junos Space Security Director application.

If you need assistance with these steps please feel free to contact JTAC.

 

 

Regards
-Animesh
If this worked for you please flag my post as an "Accepted Solution" so others can be benefited.