Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

then (Stateful Firewall Rule Next Gen Services)

Syntax

Hierarchy Level

Description

Specify the actions for a stateful firewall rule policy. The policy actions are applied to flows that meet the policy’s matching properties.

Options

count

Enables a count, in bytes or kilobytes, of all network traffic the policy allows to pass.

deny

Drop the packets.

permit

Accept the packets and send them to their destination.

reject

Drop the packets. For TCP traffic, send a TCP reset (RST) segment to the source host. For UDP traffic, send an ICMP destination unreachable, port unreachable message (type 3, code 3) to the source host.

Required Privilege Level

interface—To view this statement in the configuration.

interface-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 19.3R2.