[j-nsp] Juniper Stateful Firewall

jnunyez at ac.upc.edu jnunyez at ac.upc.edu
Tue May 24 16:37:00 EDT 2005 

What kind of rules are applied first, the rules belonging to the stateful or the
rules belonging ot the stateless firewall ?

Jose

Mensaje citado por Harshit Kumar <harshit at juniper.net>:

> You can use it either way.
> 
> Harshit
> 
> 
> > -----Original Message-----
> > From: jnunyez [mailto:jnunyez at ac.upc.edu] 
> > Sent: Tuesday, May 24, 2005 8:51 AM
> > To: Harshit Kumar; juniper-nsp at puck.nether.net
> > Subject: Re: [j-nsp] Juniper Stateful Firewall
> > 
> > Ok thanks for your help.
> > 
> > After reading your link and some other information, another 
> > doubt came to me.
> > If I use the stateful firewall service I have to put all the 
> > rules of the 
> > firewall in it or only the rules that depend on the state?
> > 
> > Or should I put rules that don't depend on the state ( for 
> > example deny all 
> > inbound traffic that comes from private addresses ) in the 
> > stateless firewall 
> > filter ?
> > 
> > 
> > Jose
> > 
> > On Friday 13 May 2005 18:15, you wrote:
> > > You need an ASP/ASM pic on the M7i to do a stateful firewall.
> > >  Here is a link to the doc describing how to configure.
> > >
> > > 
> > https://www.juniper.net/techpubs/software/junos/junos72/swconf
> > ig72-servi
> > > ces/html/stateful-firewall-config.html
> > >
> > >
> > > -Harshit
> > >
> > > -----Original Message-----
> > > From: juniper-nsp-bounces at puck.nether.net
> > > [mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of
> > > jnunyez at ac.upc.edu
> > > Sent: Wednesday, May 11, 2005 1:48 PM
> > > To: juniper-nsp at puck.nether.net
> > > Subject: [j-nsp] Juniper Stateful Firewall
> > >
> > >
> > >  Hi,
> > >  I'm a newbie in Juniper and now I'm configuring a firewall 
> > for a M7i
> > > Router.
> > >  I want to allow tcp sessions originated from inside my 
> > network. Does
> > > anyone
> > >  know how to perform this action?
> > >  I don't know if it's really possible because I'm not sure that in
> > > juniper
> > >  you can make an stateful firewall.
> > >
> > >  Thanks in advance,
> > >  Jose
> > >
> > >
> > >
> > > _______________________________________________
> > > juniper-nsp mailing list juniper-nsp at puck.nether.net
> > > http://puck.nether.net/mailman/listinfo/juniper-nsp
> > 
>

More information about the juniper-nsp mailing list