Juniper EX9200 Features Manual page 121

Results
Step-by-Step
Procedure
Results
Copyright © 2016, Juniper Networks, Inc.
Confirm the configuration of the policer by entering the
command. If the command output does not display the intended configuration, repeat
the instructions in this procedure to correct the configuration.
[edit]
user@host# show firewall
policer 1Mbps-policer {
if-exceeding {
bandwidth-limit 1m;
burst-size-limit 63k;
}
then discard;
}
Configuring a Prefix-Specific Action Based on the Policer
To configure a prefix-specific action that references the policer and specifies a portion
of a source address prefix:
Enable configuration of a prefix-specific action.
1.
[edit]
user@host# edit firewall family inet
Prefix-specific counting and policing can be defined for IPv4 traffic only.
Reference the policer for which a prefix-specific set is to be created.
2.
[edit firewall family inet prefix-action psa-1Mbps-per-source-24-32-256]
user@host# set policer 1Mbps-policer
user@host# set count
NOTE: For aggregated Ethernet interfaces, you can configure a
prefix-specific action that references a logical interface policer (also
called an aggregate policer). You can reference this type of
prefix-specific action from an IPv4 standard firewall filter and then apply
the filter at the aggregate level of the interface.
Specify the prefix range on which IPv4 addresses are to be indexed to the counter
3.
and policer set.
[edit firewall family inet prefix-action psa-1Mbps-per-source-24-32-256]
user@host# set source-prefix-length 32
user@host# set subnet-prefix-length 24
Confirm the configuration of the prefix-specific action by entering the
configuration mode command. If the command output does not display the intended
configuration, repeat the instructions in this procedure to correct the configuration.
[edit]
user@host# show firewall
policer 1Mbps-policer {
if-exceeding {
Chapter 10: Prefix-Specific Counting and Policing Actions
show firewall
prefix-action psa-1Mbps-per-source-24-32-256
configuration mode
show firewall
103