Which configuration will accomplish this task?

You want to enable local logging for security policies and have the log information stored in a
separate file on a branch SRX Series device.
Which configuration will accomplish this task?

You want to enable local logging for security policies and have the log information stored in a
separate file on a branch SRX Series device.
Which configuration will accomplish this task?

A.
[edit system syslog]
user@host# show
file sec-pol-log {
user info;
}

B.
[edit system syslog]
user@host# show
host 192.168.1.1 {
user info;
}

C.
[edit system syslog]
user@host# show
file sec-pol-log {
any any;
}

D.
[edit system syslog]
user@host# show
file sec-pol-log {
security info;
}

Show Hint

Leave a Reply to Khurram Aziz Cancel reply3

Your email address will not be published. Required fields are marked *

18 − one =

Khurram Aziz

Khurram Aziz

shouldn’t it be C?

Reply

FloppyDisk

FloppyDisk

C is the correct, juniper KB states clearly to set it to any any, however a more advanced is to match on “RT_FLOW_SESSION” otherwise it will log anything to the log which is not that great.

Reply