On Thu, 6 Aug 2009, Pekka Savola wrote:
On Wed, 5 Aug 2009, Chris Morrow wrote:
as a base-level question... why are these 'standard firewall filter'
features NOT supported on what is a 'standard juniper' platform?
if you need/want these, open bugs. it's silly that these aren't supported.
On Wed, 5 Aug 2009, Chris Morrow wrote:
as a base-level question... why are these 'standard firewall filter' features
NOT supported on what is a 'standard juniper' platform?
if you need/want these, open bugs. it's silly that these aren't supported.
JTAC folks will just refer you to some obscu
On Wed, 5 Aug 2009, Sean Clarke wrote:
Hi Bill
the keyword "except" is what is not allowed on the EX .. maybe you need to
write one to accept only the NMS-NETWORKS prefix list and deny the rest ...
it should do the same job
i.e.
as a base-level question... why are these 'standard firewal
sage-
From: juniper-nsp-boun...@puck.nether.net
[mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Bill Blackford
Sent: Wednesday, August 05, 2009 9:24 PM
To: Chuck Anderson; juniper-nsp@puck.nether.net
Subject: Re: [j-nsp] router protect policy
9.3S1.6
-b
-Original Message-
From: jun
Hi Bill
the keyword "except" is what is not allowed on the EX .. maybe you need
to write one to accept only the NMS-NETWORKS prefix list and deny the
rest ... it should do the same job
i.e.
filter ROUTER-PROTECT {
term SEQ-100-accept {
from {
source-prefix-
9.3S1.6
-b
-Original Message-
From: juniper-nsp-boun...@puck.nether.net
[mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Chuck Anderson
Sent: Wednesday, August 05, 2009 8:42 AM
To: juniper-nsp@puck.nether.net
Subject: Re: [j-nsp] router protect policy
On Wed, Aug 05, 2009 at
On Wed, Aug 05, 2009 at 08:11:58AM -0700, Bill Blackford wrote:
> I'm trying to form a router protect policy on an EX3200 that is
> being used as a layer3 border device receiving default routes only
> (temporary until it's replaced by an M series). I was able to create
> a policy that works fine
It seems "source-prefix-list" is being ignored by EX-3200. If
"source-prefix-list: statement being ignored; would you use source-address
(for the time being) :)
Regards,
Masood
> I'm trying to form a router protect policy on an EX3200 that is being used
> as a layer3 border device receiving defau
I'm trying to form a router protect policy on an EX3200 that is being used as a
layer3 border device receiving default routes only (temporary until it's
replaced by an M series). I was able to create a policy that works fine for EX
series running layer2 only services. Are there any examples or t
9 matches
Mail list logo