Juniper J2300 User Manual page 425

1.
2.
3.
4.
5.
Table 153: Configuring a Stateful Firewall Filter and NAT
Task
Navigate to the Stateful
firewall level in the
configuration hierarchy.
Define to-wan-rule and set
its match direction.
Define app-term for the
to-wan-rule rule.
Define the match condition
for app-term—the default
junos-algs-outbound
application set.
Define an action for
app-term.
Navigate to the top of the configuration hierarchy in either the J-Web interface
or the CLI configuration editor.
Perform the configuration tasks described in Table 153.
To apply the stateful firewall filter and NAT to the interface, perform the
configuration tasks described in Table 154.
If you are finished configuring the network, commit the configuration.
Go on to one of the following procedures:
To display the configuration, see "Displaying Firewall Filter
Configurations" on page 415.
To verify the stateful firewall filter, see "Verifying a Stateful Firewall
Filter" on page 420.
J-Web Configuration Editor
In the configuration editor hierarchy, select
Services>Stateful firewall.
1.
Next to Rule, click Add new entry.
2. In the Rule name box, type to-wan-rule.
3.
From the Match direction drop-down list,
select output.
1. Next to Term, click Add new entry.
2.
In the Term name box, type app-term.
1. Next to From, click Configure.
2.
Next to Application sets, click Add new
entry.
3.
In the Application set name box, type
junos-algs-outbound.
4.
Click OK twice.
1. On the Term app-term page, next to Then,
click Configure.
2. In the Designation drop-down list, select
Accept.
3. Click OK twice.
Configuring a Stateful Firewall Filter with a Configuration Editor
Configuring Firewall Filters and NAT
CLI Configuration Editor
From the top of the configuration hierarchy,
enter edit services stateful-firewall.
Set the rule name, match direction, term
name, and match condition:
set rule to-wan-rule match-direction output
term app-term from application-sets
junos-algs-outbound
Set the action:
set rule to-wan-rule term app-term then accept
395