From the course: Juniper Security Policies Fundamentals
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Factory-default security policies
From the course: Juniper Security Policies Fundamentals
Factory-default security policies
- Before we start configuring custom security policies, it is important to understand how Junos behaves in the absence of a custom security policy. By default, the Junos device is pre-configured to deny all transit traffic. Meaning traffic entering the device through a ingress interface, and exiting the device through an egress interface, will be denied. This is because of an implicit security policy which denies all transit traffic. It is an implicit rule, meaning you will not find this in the the device configuration. This can, however, be changed. To do so, first navigate to the configuration mode, using the Edit or Configure command. Next, use the command Edit Security Policies, to enter the policy configuration hierarchy. Let's start with "set ?" The key word to change the default policy is over here, default policy. Let's do a question mark, and the command for that is "permit-all". So let's do "set default-policy permit-all", press enter, let's commit to configuration, commit…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.