Juniper J2300 User Manual page 441
J-series services router
Hide thumbs
Also See for J2300:
- Getting started manual (305 pages) ,
- Quick start quide (26 pages) ,
- Datasheet (2 pages)
Table of Contents
Advertisement
Table 161: Configuring a Fragments Firewall Filter for the Routing Engine
Task
Navigate to the Firewall
level in the configuration
hierarchy.
Define fragment-RE and
small-offset-term, and
define the fragment offset
match condition.
The fragment offset can be
from 1 through 8191.
Define the action for
small-offset-term.
J-Web Configuration Editor
In the configuration editor hierarchy, select
Firewall.
1.
Next to Filter, click Add new entry.
2.
In the Filter name box, type fragment-RE.
3.
Next to Term, click Add New Entry.
4.
In the Rule name box, type
small-offset-term.
5.
Next to From, click Configure.
6.
In the Fragment offset choice drop-down
list, select Fragment offset.
7.
Next to Fragment offset, select Add New
Entry.
8.
In the Range box, type 1-5.
9.
Click OK twice.
1.
On the Term small-offset-term page, next
to Then, click Configure.
2.
Next to Syslog, select the check box.
3.
In the Designation drop-down list, select
Discard.
4.
Click OK twice.
Configuring a Stateless Firewall Filter with a Configuration Editor
Configuring Firewall Filters and NAT
CLI Configuration Editor
From the top of the configuration hierarchy,
enter edit firewall.
Set the term name and define the fragment
offset match condition:
set family inet filter fragment-RE
term small-offset-term from
fragment-offset 1-5
Set the action:
set family inet filter fragment-RE
term small-offset-term then syslog discard
411
- Quick Links:
- User Guide
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
