Hi all,
we have permissive rule with an "any any any" applied in our srx, and we would like to remove it. But before, we need monitor traffic matching this permissive rule at least during one week. How i can do this using a SRX1400?
There some way to send logs matching this specific rule to a specific syslog? I mean only when this permissive rule is matched, the firewall send a syslog to specific syslog server with source, destintion and ports.
Tks,
João Victor