Juniper J2300 User Manual page 433

Task J-Web Configuration Editor
1.
Define bgp-term, and
define the protocol,
destination port, and
2.
source address match
conditions.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
1.
Define the action for
bgp-term.
2.
3.
Define discard-rest-term 1.
and its action.
2.
3.
4.
5.
6.
7.
On the Filter protect-RE page, next to
Term, click Add New Entry.
In the Rule name box, type bgp-term.
Next to From, click Configure.
In the Protocol choice drop-down list,
select Protocol.
Next to Protocol, click Add new entry.
In the Value keyword drop-down list,
select tcp.
Click OK.
In the Destination port choice drop-down
list, select Destination port.
Next to Destination port, click Add new
entry.
In the Value keyword drop-down list,
select bgp.
Click OK.
Next to Source address, click Add new
entry.
In the Address box, type 10.2.1.0/24.
Click OK twice.
On the Term bgp-term page, next to Then,
click Configure.
In the Designation drop-down list, select
Accept.
Click OK twice.
On the Filter protect-RE page, next to
Term, click Add New Entry.
In the Rule name box, type
discard-rest-term.
Next to Then, click Configure.
Next to Log, select the check box.
Next to Syslog, select the check box.
In the Designation drop-down list, select
Discard.
Click OK four times.
Configuring a Stateless Firewall Filter with a Configuration Editor
Configuring Firewall Filters and NAT
CLI Configuration Editor
Set the term name and define the match
conditions:
set family inet filter protect-RE term bgp-term
from protocol tcp destination-port bgp
source-address 10.2.1.0/24
Set the action:
set family inet filter protect-RE term bgp-term
then accept
Set the term name and define its actions:
set family inet filter protect-RE
term discard-rest-term then log syslog
discard
403