SRX

Is there a command to check the number of address entries in an address set as each address set only supports 1024 address so need to check the count.

Hi ,

Not sure if my suggestions will help.

Following commands will show the details:

root@Site-A> show configuration | display set | match address-set

set security zones security-zone Trust address-book address-set Local-Set address Local-Network

set security zones security-zone Trust address-book address-set Local-Set address Local-Network1

set security zones security-zone Trust address-book address-set Local-Set address Local-Network2

++++++++++++++++++

root@Site-A> show security policies policy-name test-policy detail

Policy: test-policy, action-type: permit, State: enabled, Index: 6, Scope Policy: 0

Policy Type: Configured

Sequence number: 1

From zone: Trust, To zone: Untrust

Source addresses:

Local-Network2: 192.168.112.0/24

Local-Network1: 192.168.111.0/24

Local-Network: 192.168.100.0/24

Destination addresses:

any-ipv4(global): 0.0.0.0/0

any-ipv6(global): ::/0

Application: any

IP protocol: 0, ALG: 0, Inactivity timeout: 0

Source port range: [0-0]

Destination port range: [0-0]

Per policy TCP Options: SYN check: No, SEQ check: No

Regards,

rparthi

Please Mark My Solution Accepted if it Helped, Kudos are Appreciated Too

Not exactly looking for something similar to  "show security policy hit-count " which shows policy usage but also the number of policies not in the order though but atleast something to make note of.

Something like this will show them to you

 show configuration security zones | display set | match <name-of-address-set> | count

Thanks Mark this is exactly what i was looking for.

No thanks! 🙂