Re: [j-nsp] Inserting security policies on SRX

There was some discussion on it just recently. Apparently a bunch of messages got held up, and while playing around with mailman Jared managed to free them up. In response to the question, you could also do a "load replace terminal" and paste in the formatted config for the entire stanza. Might be

Re: [j-nsp] Inserting security policies on SRX

@puck.nether.net Subject: Re: [j-nsp] Inserting security policies on SRX I've found the "insert" and similar commands often get confused as to what you mean and where unless you move into the hierarchy closest to where you're working first by doing "edit security policies f

Re: [j-nsp] Inserting security policies on SRX

I've found the "insert" and similar commands often get confused as to what you mean and where unless you move into the hierarchy closest to where you're working first by doing "edit security policies from-zone it_staff to-zone untrust" then doing your insert X before Y statement from that part of t

Re: [j-nsp] Inserting security policies on SRX

Insert doesn't create it, it re-orders existing policies. IMHO it's confusingly named. So you create the policy using set (which puts it at the end) then you use insert to re-order it in the position you want. On May 1, 2013 8:32 AM, "James S. Smith" wrote: > I have an SRX240 running 11.1R2.3, a

Re: [j-nsp] Inserting security policies on SRX

Did you edit the new policy and set anything in it first? Will O'Brien On May 1, 2013, at 8:48 AM, "James S. Smith" mailto:jsm...@windmobile.ca>> wrote: I have an SRX240 running 11.1R2.3, and occasionally I have to add new policies. The obvious choice would seem to be use the insert command b

Re: [j-nsp] Inserting security policies on SRX

before using insert i think you need to create the policy !!! insert is an entry more related to moving policy objects or firewall terms and not creation (set) Sent from my iPhone On 18/07/2011, at 17:07, "James S. Smith" wrote: > I have an SRX240 running 11.1R2.3, and occasionally I have to

Re: [j-nsp] Inserting security policies on SRX

Never mind, answered my own question. Didn't realize you have to define the policy first and let it be added to the bottom of the list, and then use the insert statement to move it. James S. Smith Network Architect WIND Mobile 207 Queen's Quay West, Suite 710 Toronto, ON M5J 1A7 Email: jsm...

[j-nsp] Inserting security policies on SRX

I have an SRX240 running 11.1R2.3, and occasionally I have to add new policies. The obvious choice would seem to be use the insert command but I'm getting some weird errors. For example, I have a number of policies for the different protocols going between the IT staff and the untrust zone. W