Dear all
Could you please help me on this case?
I am new entry on Juniper technology and have this case to solve in my office, could some one help please?
I want to permit only Whatsapp on my SRX550 Junos and deny all other, please see the configuration bellow:
[edit security zones security-zone untrust-zone address-book]
set address WHATSAPP_1 50.22.210.130/15;
set address WHATSAPP_2 184.172.19.95/15;
set address WHATSAPP_3 208.43.96.6/16;
[edit security policies from-zone trust-zone to-zone untrust-zone]
set policy WHATSAPP_ACCESS match source-address any
set policy WHATSAPP_ACCESS match destination-address WHATSAPP_1
set policy WHATSAPP_ACCESS match destination-address WHATSAPP_2
set policy WHATSAPP_ACCESS match destination-address WHATSAPP_3
set policy WHATSAPP_ACCESS match application any
set policy WHATSAPP_ACCESS then permit
show security zones security-zone untrust-zone address-book
address WHATSAPP_1 50.22.210.130/15;
address WHATSAPP_2 184.172.19.95/15;
address WHATSAPP_3 208.43.96.6/16;
show security policies from-zone trust-zone to-zone untrust-zone
policy WHATSAPP_ACCESS {
match {
source-address any;
destination-address [ WHATSAPP_1 WHATSAPP_2 WHATSAPP_3 ];
application any;
}
then {
permit;
After COMMIT
[edit security zones security-zone untrust-zone address-book]
'address WHATSAPP_1'
Invalid address entry
error: configuration check-out failed
Best Regards
Alcidio Tembe