Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


then (Stateful Firewall Rule Next Gen Services)


Hierarchy Level


Specify the actions for a stateful firewall rule policy. The policy actions are applied to flows that meet the policy’s matching properties.



Enables a count, in bytes or kilobytes, of all network traffic the policy allows to pass.


Drop the packets.


Accept the packets and send them to their destination.


Drop the packets. For TCP traffic, send a TCP reset (RST) segment to the source host. For UDP traffic, send an ICMP destination unreachable, port unreachable message (type 3, code 3) to the source host.

Required Privilege Level

interface—To view this statement in the configuration.

interface-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 19.3R2.