440 MDS Orbit MCR/ECR Technical Manual MDS 05-6632A01, Rev. F
set services firewall filter IN_UNTRUSTED rule 12 actions action drop
set services firewall filter OUT_TRUSTED rule 10 match protocol all
set services firewall filter OUT_TRUSTED rule 10 actions
set services firewall filter OUT_TRUSTED rule 10 actions action accept
set services firewall filter OUT_UNTRUSTED rule 1 match src-address
set services firewall filter OUT_UNTRUSTED rule 1 match src-address address-set CELL-IP
set services firewall filter OUT_UNTRUSTED rule 1 match src-address add-interface-address true
set services firewall filter OUT_UNTRUSTED rule 1 actions
set services firewall filter OUT_UNTRUSTED rule 1 actions action accept
set services firewall filter OUT_UNTRUSTED rule 2 match protocol all
set services firewall filter OUT_UNTRUSTED rule 2 actions
set services firewall filter OUT_UNTRUSTED rule 2 actions action drop
12.3.1.2 Status
#IKE/IPsec status
> show services vpn
services vpn ike security-associations security-association 54
name SRX240_SA
state ESTABLISHED
local-host 172.18.175.135
local-id 172.18.175.135
remote-host 172.18.175.40
remote-id 172.18.175.40
initiator true
initiator-spi 78c786f79094ac55
responder-spi c5aa90f242499e8d
ciphersuite AES_CBC-128/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_2048
established-time 694
rekey-time 9143
reauth-time 1852140901
services vpn ipsec security-associations security-association 196
name SRX240_SA
state INSTALLED
mode TUNNEL
udp-encap false
in-spi cce4cde5
out-spi 4c84f08c
ciphersuite AES_CBC-128/HMAC_SHA2_256_128/MODP_2048
in-bytes 0
in-packets 0
in-last-use 1621200
To Next Page
Loading...
