Table of Contents
Advertisement
M-series and MX-series Devices
168
Table 81: Firewall Filter Configuration Details (continued)
Task
Define firewall filter term.
Your Action
1.
Click Term next to Accounting Profile.
2. Click Add new entry next to Term.
3. Expand Term.
4. In the Name box, enter the name that identifies the term.
5. In the Comment box, enter the comment for the term.
6. From the Filter list, select the name that identifies the filter.
7. Expand From.
8. In the Comment box, enter the comment.
9. Select the Is Fragment check box if the packet is a trailing
fragment.
10. Select the First Fragment check box if it matches the first
fragment of a fragmented packet.
11. In the Fragment Flags box, enter the IP fragmentation flags.
12. Select the Tcp Initial check box if it matches the first TCP
packet of a connection.
13. Select the Tcp established check box if it matches the TCP
packets other than the first packet of a connection.
14. In the Tcp Flags box, enter the TCP flags.
15. From the listed protocol-independent match conditions, select
the filters defined for the Inet family type.
The protocol-independent match conditions are Address, Ah
Spi, Destination Address, Destination Class, Destination port,
Destination prefix List, Dscp, Esp Spi, Forwarding Class,
Fragment offset, Icmp Code, Icmp Type, Interface, Interface
Group, Interface Set, Ip Options, Loss Priority, Packet Length,
Port, Precedence, prefix List, Protocol, Source Address, Source
Port, Source Prefix List and Ttl.
16. Expand Then.
17. In the Comment box, enter the comment for then.
18. In the Count box, enter the number of packets.
19. Select the Log check box to store the header information of a
packet on the Routing Engine.
20. Select Syslog to log an alert for the packet.
21. Select the Sample check box to sample the packet traffic.
22. Select the Port Mirror check box to port-mirror the packets.
23. From the Loss Priority list, set the packet loss priority (PLP) to
low, medium-low, medium-high, or high.
24. In the Forwarding Class box, enter the packet forwarding class
name.
25. From the Prefix Action list, select the prefix specific action.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper NETWORK AND SECURITY MANAGER 2010.2
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1