Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

show security policies policy set

Syntax

Description

Displays a summary of all policy set you have created for inner session tunnel inspection for EVPN-VXLAN tunnel traffic.

Required Privilege Level

view

Output Fields

#xd_1ca85634d9bdd05b-10b03318-1781a1779c8--7dd7__id-27077 lists the output fields for the show security policies command. Output fields are listed in the approximate order in which they appear.

show security policies policy-set Output Fields

Field Name

Field Description

From zone

Name of the source zone.

To zone

Name of the destination zone.

Policy-name

Name of the policy-set

State

Status of the policy:

  • enabled: The policy can be used in the policy lookup process, which determines access rights for a packet and the action taken in regard to it.

  • disabled: The policy cannot be used in the policy lookup process, and therefore it is not available for access control.

Index

Internal number associated with the policy.

Sequence number

Number of the policy within a given context. For example, three policies that are applicable in a from-zoneA-to-zoneB context might be ordered with sequence numbers 1, 2, 3. Also, in a from-zoneC-to-zoneD context, four policies might have sequence numbers 1, 2, 3, 4.

Scope Policy Policy identifier.
Log Profile ID Internal log profile number.
from-zone source zone of the traffic.
to-zone Destination zone of the traffic.

Source vrf group

Source virtual routing and forwarding (VRF). One or many source VRF instances, for example, the VRF routing instance associated with an incoming packet

Destination vrf group

Destination (VRF) . One or many destination VRF instances.

Source address

For standard display mode, the names of the source addresses for a policy. Address sets are resolved to their individual names.

Destination Address Name of the destination address (or address set) as it was entered in the destination zone’s address book.
Application Name of a preconfigured or custom application whose type the packet matches, as specified at configuration time.
Source identity feeds One or more user roles specified for a policy.
Destination identity feeds One or more user roles specified for a policy.
Action

The action taken for a packet that matches the policy’s tuples. Actions include :

deny

reject

permit

Sample Output

show security policies policy-set

Release Information

Command introduced in Junos OS Release 21.1R1.