Security Policy

In a Junos OS stateful firewall, the security policies enforce rules for the transit traffic, in terms of what traffic can pass through the firewall, and the actions that need to take place on the traffic as it passes through the firewall. From the perspective of security policies, the traffic enters one security zone and exits another security zone. This combination of a from-zone and to-zone is called a context. Each context contains an ordered list of policies.

By default, a device denies all traffic in all directions. Through the creation of policies, you can control the traffic flow from zone to zone by defining the kinds of traffic permitted to pass from specified sources to specified destinations at scheduled times.

This wizard leads you through the basic required steps to configure firewall policies for SRX Series security devices. To configure a policy with a complete set of options, use either the J-Web interface or the CLI.

As you use this wizard, refer to the upper-left area of the page to see where you are in the configuration process. Refer to the lower-left area of the page for help related to the current page and its contents.

When you click a link under the Resources heading in the lower-left area, the document opens in your browser. If the document is in a new tab, be sure to close only the tab (not the browser window) when you close the document.