You can use a firewall filter to avoid or to permit the correct ip
address to your gear.
There is a good document at Juniper web site explaining how you can do
that (best practices) ... beside others:
http://www.cymru.com/gillsr/documents/junos-template.pdf
http://www.juniper.net/us/en/community/junos/training-certification/day-one/
http://www.juniper.net/us/en/community/junos/training-certification/day-one/fundamentals-series/securing-routing-engine/
What is the recommend/preferred way to secure the SSH& Web access to a piece
of JunOS gear? I have a couple routers (MX80) and switches (EX4200) that are
remote. Can I attach packet filters to the system services (HTTP,SSH)? Do I
attach the packet filter to the lo0 interface?
Thanks
-Matt
_______________________________________________
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp