Security Policiesto allow specefic



  • Dear All,

    I am new to Juniper and I am facing an issue with my SRX.
    I have added a security policy in which i have allowed access to specific IPs from the outside, but I was surprised when I discovered that the policy is not applied and the access is open to ANY.

    Can you help please.

    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out match source-address ICT_TEAM
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out match destination-address srv_his-bi-group_out
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out match application junos-https
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out match source-identity any
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out then permit
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out then log session-init
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out then log session-close
    set security policies from-zone Out to-zone WAF-WAN policy his-bi_out then count


  • administrators

    You have source-identity set to “any”. Take that line out.


 

33
Online

38.4k
Users

12.7k
Topics

44.5k
Posts