Hi,
For generating traps using the event-options, please go through the following link :-
https://kb.juniper.net/InfoCenter/index?page=content&id=KB28307&actp=search
The event options have to match an event when the session hits the policy which can be "RT_FLOW" however the policy name would be in the middle of the syslog which is generated.
We also need the following two conditions :-
- The RT_FLOW messages should be logged to the messages file using event mode (This can cause RE high CPU if a lot of hits are there on the policy).
- Apply log -> session init to the security policy.
Regards,
Sahil Sharma
---------------------------------------------------
Please mark my solution as accepted if it helped, Kudos are appreciated as well.