SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  SRX240H2 Inter-Vlan Traffic Deny Logging

    Posted 03-16-2017 09:26

    Hello,

     

    I have 3 VLANs in my policies and zones and i have the following in my configuration which is setup for anything from the internet inbound and any inter-vlan traffic with deny and log for both session-init and session-close.  Because the default action for intervlan traffic is to deny unless trunking is setup will it not log as written below?  I do not see anything in the logs unless I am looking in the wrong place?  Monitoring->Security->Policy->Activities and then use the Policy Context filter?

     

    from-zone Internet to-zone Home {
                policy internet-home {
                    match {
                        source-address any;
                        destination-address any;
                        application any;
                    }
                    then {
                        deny;
                        log {
                            session-init;
                            session-close;
                        }



  • 2.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging
    Best Answer

     
    Posted 03-16-2017 10:10
    check this https://kb.juniper.net/KB19490

    How to enable and view traffic logs in the J-Web/GUI on SRX devices


  • 3.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

    Posted 03-16-2017 11:02

    Thank you, working great.

     

    I see a bug was filed is there any way to check on the status of that?  This is kind of a strange problem to have.



  • 4.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

     
    Posted 03-16-2017 18:13
    For the PR, if its an external PR you can use the below URL to get the status - https://prsearch.juniper.net/InfoCenter/index?page=prcontent&id=PRXXXXX


  • 5.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

     
    Posted 03-16-2017 22:41

    If it is already tracked via a SR;I would suggest to get the right data from the JTAC case owner,



  • 6.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

    Posted 03-17-2017 07:12

    I don't see anything on the website explaining the problem or the JTAC owner.  Just that a problem report was logged.



  • 7.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

     
    Posted 03-17-2017 21:55

    https://prsearch.juniper.net/InfoCenter/index?page=prsearch

     

    The above URL will not disclose the case numbers mapped to it. It is the other way, if you own the SR and view the same via case manager, you can see the PR's tagged to the it.



  • 8.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

    Posted 03-17-2017 07:11

    How do you find the PR, it just says one was logged but nothing comes up in searches



  • 9.  RE: SRX240H2 Inter-Vlan Traffic Deny Logging

     
    Posted 03-17-2017 07:17
    Customers can see only those PRs that are marked public. JTAC can open PR for investigation on issues and they will be internal , you may not be able to see the details until its made public.