Hi, i have an issue with my SRX 340 were the box for whatever reason has stopped logging denied traffic. I have absolutely no clue why it has stopped, i haven't changed anything and have cleared the current logs. Here is the config:
set system syslog file Denied-Traffic any any set system syslog file Denied-Traffic match RT_FLOW_SESSION_DENY set system syslog file Denied-Traffic archive size 256k set system syslog file Denied-Traffic archive world-readable set security policies from-zone Zone1 to-zone Zone2 policy DEFAULT_DENY match source-address any set security policies from-zone Zone1 to-zone Zone2 policy DEFAULT_DENY match destination-address any set security policies from-zone Zone1 to-zone Zone2 policy DEFAULT_DENY match application any set security policies from-zone Zone1 to-zone Zone2 policy DEFAULT_DENY then deny set security policies from-zone Zone1 to-zone Zone2 policy DEFAULT_DENY then log session-init 
No comments:
Post a Comment