On Tue, 21 Mar 2023 at 10:29, Laurent CARON via juniper-nsp
wrote:
> set firewall family inet filter filter-management term accept-ospf from
> protocol ospf
> set firewall family inet filter filter-management term accept-ospf then
> count filter-management-accept-ospf
> set firewall family inet fi
No, I use MX's and QFX''s and EX these days.
Em ter., 21 de mar. de 2023 às 08:05, Laurent CARON <
lca...@unix-scripts.info> escreveu:
> Thanks Cristian,
>
> Not specifing source should work since this rule is supposed to be wider.
>
> I think my question is EX4650 specific. Do you use the EX4650
Thanks Cristian,
Not specifing source should work since this rule is supposed to be wider.
I think my question is EX4650 specific. Do you use the EX4650 platform ?
Thanks
Le 21/03/2023 à 11:38, Cristian Cardoso a écrit :
Hi
Here I use "from prefix-list", from what I understand from Juniper,
Hi
Here I use "from prefix-list", from what I understand from Juniper, when
"from destination-prefix-list" is inserted it is as if it were an IP on the
internal interface of the network and not an IP source IP filter and the
"from prefix-list" is more like source address.
set firewall family inet
Hi,
I'm currently migrating EX4500 to EX4650.
Our loopback filter taken from EX4500 to EX4650 doesn't behave as expected.
Our lo0 filter looks like:
set interfaces lo0 unit 0 family inet filter input filter-management
set firewall family inet filter filter-management term ALLOW_SSH from
source
5 matches
Mail list logo
