match (Security Policies)
Syntax
match {
application {
[application];
any;
}
destination-address {
[address];
any;
any-ipv4;
any-ipv6;
}
source-address {
[address];
any;
any-ipv4;
any-ipv6;
}
source-identity {
[role-name];
any;
authenticated-user;
unauthenticated-user;
unknown-user;
}
destination-identity-context {
[user-or-role-name];
any;
identity-context-authenticated;
identity-context-unauthenticated;
identity-context-unavailable;
}
destination-identity-context-profile device-identity-profile-name;
}
Hierarchy Level
[edit security policies from-zone zone-name to-zone zone-name policy policy-name]
Description
Configure security policy match criteria.
Options
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 8.5. Statement updated with the
source-identity option in Junos OS Release
12.1. Statement
updated with the destination-identity-context option in Junos OS
Release 23.4R1.