[Contents] [Prev] [Next] [Index] [Report an Error]

show security zones

Syntax

show security zones
<detail | terse>
< zone-name >

Release Information

Command introduced in Release 8.5 of JUNOS software.

Description

Display information about security zones.

This command is supported on J-series and SRX-series devices.

Options

none—Display information about all zones.

detail | terse—(Optional) Display the specified level of output.

zone-name —(Optional) Display information about the specified zone.

Required Privilege Level

view

Related Topics

security-zone

List of Sample Output

show security zones
show security zones abc
show security zones abc detail
show security zones terse
show security zones my-shared-external

Output Fields

Table 92 lists the output fields for the show security zones command. Output fields are listed in the approximate order in which they appear.

Table 92: show security zones Output Fields

Field Name

Field Description

Security zone

Name of the security zone.

Policy configurable

Whether the policy can be configured or not.

Interfaces bound

Number of interfaces in the zone.

Interfaces

List of the interfaces in the zone.

Zone

Name of the zone.

Type

Type of the zone.

show security zones

user@host> show security zones 
Functional zone: management
   Policy configurable: No
   Interfaces bound: 1
   Interfaces:
     ge-0/0/0.0
Security zone: Host
   Send reset for non-SYN session TCP packets: Off
   Policy configurable: Yes
   Interfaces bound: 1
   Interfaces:
     fxp0.0
Security zone: abc
   Send reset for non-SYN session TCP packets: Off
   Policy configurable: Yes
   Interfaces bound: 1
   Interfaces:
     ge-0/0/1.0
Security zone: def
   Send reset for non-SYN session TCP packets: Off
   Policy configurable: Yes
   Interfaces bound: 1
   Interfaces:
     ge-0/0/2.0
Security zone: junos-global
   Send reset for non-SYN session TCP packets: Off
   Policy configurable: Yes
   Interfaces bound: 0
   Interfaces:

show security zones abc

user@host> show security zones abc 
Security zone: abc
   Send reset for non-SYN session TCP packets: Off
   Policy configurable: Yes
   Interfaces bound: 1
   Interfaces:
     ge-0/0/1.0

show security zones abc detail

user@host> show security zones abc detail 
Security zone: abc
   Send reset for non-SYN session TCP packets: Off
   Policy configurable: Yes
   Interfaces bound: 1
   Interfaces:
     ge-0/0/1.0

show security zones terse

user@host> show security zones terse 
Zone                    Type
my-internal             Security
my-external             Security
dmz                     Security
my-shared-external      Security

show security zones my-shared-external

user@host> show security zones my-shared-external 
Security zone: my-shared-external, Shared
  send reset for non SYN non session TCP packets : On
  IP/TCP reassembly for ALG on traffic from/to this zone: Yes
  Policy Configurable: Yes
  Interfaces bound:1. 
    ge-0/1/1.0
    IP classification: Disabled.
[Contents] [Prev] [Next] [Index] [Report an Error]

Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice.