Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

show security zones

Syntax

Description

This command displays the information about the security zones. You can define a security zone, which allows you to divide the network into different segments and apply different security options to each segment.

Options

  • none—Displays information about all the security zones configured.

  • zone-name—(Optional) Displays information about the specified security zone.

  • all-logical-systems-tenants—(Optional) Displays the information about the security zone of all logical systems and tenant systems.

  • detail—(Optional) Displays the detail level information about the security zone.

  • logical-system logical-system-name—(Optional) Displays the information about the security zones of a specified logical system.

  • logical-system all—(Optional) Displays the information about the security zones of all logical systems.

  • root-logical-system—(Optional) Displays the information about the security zones of the root logical system.

  • tenant tenant-name—(Optional) Displays the information about the security zones of a specified tenant system.

  • tenant all—(Optional) Displays the information about the security zones of all tenant systems.

  • terse—(Optional) Displays the specified level information about the security zone.

  • type functional—(Optional) Displays the information for functional zones.

  • type security—(Optional) Displays the information for security zones.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show security zones command. Output fields are listed in the approximate order in which they appear.

Table 1: show security zones Output Fields

Field Name

Field Description

Level of Output

Functional zone

Name of the functional zone.

none

Security zone

Name of the security zone.

detail

none

Description

Description of the security zone.

detail

none

Policy configurable

Whether the policy can be configured or not.

detail

none

Interfaces bound

Number of interfaces in the zone.

detail

none

Interfaces

List of the interfaces in the zone.

detail

none

Zone

Name of the zone.

terse

Type

Type of the zone.

terse

Logical system

Name of the logical system.

detail

Tenant

Name of the tenant system.

detail

Screen whitelist

Allowlist for all IP screen options to bypass the IP screening check at zone level.

detail

Sample Output

show security zones

show security zones abc

show security zones all-logical-systems-tenants

show security zones abc detail

show security zones logical-system LSYS1

show security zones logical-system all

show security zones root-logical-system

show security zones tenant TSYS1

show security zone tenant all

show security zones terse

show security zones type security

show security zones TRUST

show security zones (Screen allowlist)

Release Information

Command introduced in Junos OS Release 8.5.

tenant option introduced in Junos OS Release 18.3R1.