Juniper firewall log

root@R3> show configuration firewall | display set
set firewall filter BLOCK_ICMP term 1 from source-address 11.11.11.1/32
set firewall filter BLOCK_ICMP term 1 from destination-address 33.33.33.3/32
set firewall filter BLOCK_ICMP term 1 from protocol icmp
set firewall filter BLOCK_ICMP term 1 from icmp-type echo-request
set firewall filter BLOCK_ICMP term 1 then count BLOCK_ICMP_Counter_1
set firewall filter BLOCK_ICMP term 1 then log
set firewall filter BLOCK_ICMP term 1 then reject
set firewall filter BLOCK_ICMP term 9999 then count BLOCK_ICMP_Counter_9999
set firewall filter BLOCK_ICMP term 9999 then accept

root@R3> show firewall log
Log :
Time Filter Action Interface Protocol Src Addr Dest Addr
21:22:39 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:22:38 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:22:38 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:22:37 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:22:36 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:21:08 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:20:22 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3
21:20:21 BLOCK_ICMP R em5.0 ICMP 11.11.11.1 33.33.33.3

root@R3> show firewall log detail
Time of Log: 2013-11-10 21:22:39 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:22:38 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:22:38 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:22:37 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:22:36 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:21:08 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:20:22 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0
Time of Log: 2013-11-10 21:20:21 UTC, Filter: BLOCK_ICMP, Filter action: reject, Name of interface: em5.0
Name of protocol: ICMP, Packet Length: 54189, Source address: 11.11.11.1, Destination address: 33.33.33.3
ICMP type: 8, ICMP code: 0

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s