Table of Contents
Advertisement
M-series and MX-series Devices
Related
Documentation
164
Table 79: Bridge Filter Configuration Details (continued)
Task
Define a firewall filter term.
Configuring the Firewall Filter for Any Family Type (NSM Procedure) on page 161
Configuring the Firewall Filter for Ccc Family Type (NSM Procedure) on page 165
Your Action
1.
Click Add new entry next to Term.
2. Expand Term.
3. In the Name box, enter the name that identifies the term.
4. In the Comment box, enter the comment for the term.
5. From the Filter list, select the name that identifies the filter.
6. Expand From.
7. In the Comment box, enter the comment.
8. In the Tcp Flags box, enter the Tcp flags.
9. From the listed protocol-independent match conditions, select
the filters defined for the Bridge family type.
The protocol-independent match conditions are Destination
Mac Address, Destination port, DSCP, Ether Type, Forwarding
Class, ICMP Code, ICMP Type, Interface Group, Ip Address, Ip
Destination Address, Ip Precedence, Ip Protocol, Ip Source
Address, Learn Vlan 1p Priority, Learn Vlan Id, Loss priority, Port,
Source Mac Address, Source Port, Traffic Type, User Vlan 1p
Priority, User Vlan Id, and Vlan Ether Type.
10. Expand Then.
11. In the Comment box, enter the comment for then.
12. In the Count box, enter the number of packets.
13. From the Loss Priority list, set the packet loss priority (PLP) to
low, medium-low, medium-high, or high.
14. In the Forwarding Class box, enter the packet forwarding class
name.
15. Select Port Mirror check box to port mirror the packets.
16. Click Accept next to Then.
Select Accept to accept a packet.
Select Discard to discard a packet silently, without sending
an ICMP message.
Select Next to evaluate the next term in the firewall filter.
17. Click Policer next to Then.
18. Select one of the following:
—To configure a new policer for each filter and select
Policer
the policer name.
—To configure a tricolor marking policer,
three-color-policer
a. Expand Three Color Policer.
b. Click Single Rate next to Three Color Policer.
c. Select one of the following:
single-rate—if the named tricolor policer is a single-rate
policer.
two-rate—if the named tricolor policer is a two-rate
policer.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper NETWORK AND SECURITY MANAGER 2010.2
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1