SRX Services Gateway
Highlighted
SRX Services Gateway

SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-16-2017 09:26 AM

Hello,

 

I have 3 VLANs in my policies and zones and i have the following in my configuration which is setup for anything from the internet inbound and any inter-vlan traffic with deny and log for both session-init and session-close.  Because the default action for intervlan traffic is to deny unless trunking is setup will it not log as written below?  I do not see anything in the logs unless I am looking in the wrong place?  Monitoring->Security->Policy->Activities and then use the Policy Context filter?

 

from-zone Internet to-zone Home {
            policy internet-home {
                match {
                    source-address any;
                    destination-address any;
                    application any;
                }
                then {
                    deny;
                    log {
                        session-init;
                        session-close;
                    }

8 REPLIES 8
Highlighted
SRX Services Gateway
Solution
Accepted by topic author Himself
‎03-16-2017 11:02 AM

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-16-2017 10:10 AM
check this https://kb.juniper.net/KB19490

How to enable and view traffic logs in the J-Web/GUI on SRX devices
Thanks,
Suraj
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too
Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-16-2017 11:02 AM

Thank you, working great.

 

I see a bug was filed is there any way to check on the status of that?  This is kind of a strange problem to have.

Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-16-2017 06:13 PM
For the PR, if its an external PR you can use the below URL to get the status - https://prsearch.juniper.net/InfoCenter/index?page=prcontent&id=PRXXXXX
Thanks,
Suraj
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too
Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-16-2017 10:41 PM

If it is already tracked via a SR;I would suggest to get the right data from the JTAC case owner,

-Python JNCIE 3X [SP|DC|ENT] JNCIP-SEC JNCDS 3X [ WAN | DC|SEC] JNCIS-Cloud JNCIS-DevOps CCIP ITIL
#Please mark my solution as accepted if it helped, Kudos are appreciated as well.
Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-17-2017 07:11 AM

How do you find the PR, it just says one was logged but nothing comes up in searches

Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-17-2017 07:11 AM

I don't see anything on the website explaining the problem or the JTAC owner.  Just that a problem report was logged.

Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-17-2017 07:17 AM
Customers can see only those PRs that are marked public. JTAC can open PR for investigation on issues and they will be internal , you may not be able to see the details until its made public.
Thanks,
Suraj
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too
Highlighted
SRX Services Gateway

Re: SRX240H2 Inter-Vlan Traffic Deny Logging

‎03-17-2017 09:54 PM

https://prsearch.juniper.net/InfoCenter/index?page=prsearch

 

The above URL will not disclose the case numbers mapped to it. It is the other way, if you own the SR and view the same via case manager, you can see the PR's tagged to the it.

-Python JNCIE 3X [SP|DC|ENT] JNCIP-SEC JNCDS 3X [ WAN | DC|SEC] JNCIS-Cloud JNCIS-DevOps CCIP ITIL
#Please mark my solution as accepted if it helped, Kudos are appreciated as well.
Feedback