Table of Contents
Advertisement
Complete Software Guide for Junos
Table 379: Supported Match Conditions Applicable to IPv4 Traffic for Firewall Filters on EX
Series Switches (continued)
Match Condition
Description
One or more TCP flags:
tcp-flags [flags
tcp-initial]
To specify multiple flags, use logical
operators.
Match the first TCP packet of a connection.
tcp-initial
tcp-initial
"(syn & !ack)"
tcp-initial
the protocol is TCP. To do so, specify the
protocol tcp
Differentiated Services code point (DSCP).
traffic-class
The DiffServ protocol uses the
type-of-service (ToS) byte in the IP header.
The most significant six bits of this byte form
the DSCP.
You can specify DSCP in hexadecimal,
binary, or decimal form.
In place of the numeric value, you can
specify one of the following text synonyms
(the field values are also listed):
3018
®
OS for EX Series Ethernet Switches, Release 10.3
bit-name—
,
,
,
,
fin
syn
rst
push
ack
logical operators—
(logical AND),
&
(logical OR),
(negation)
!
numerical value—0x01 through 0x20
text synonym—
tcp-initial
is a synonym for the bit names
.
does not implicitly check whether
match condition.
—as defined in
RFC 2598
ef (46)
Expedited Forwarding PHB.
,
,
;
af11 (10)
af12 (12)
af13 (14)
af21 (18)
,
af22 (20)
,
af23 (22)
af31 (26)
,
af32 (28)
,
af33 (30)
,
,
af41 (34)
af42 (36)
af43 (38)
These four classes, with three drop
precedences in each class, for a total of
RFC 2597
12 code points, are defined in
Assured Forwarding PHB.
Supported Platforms and Bind Points
Ingress
EX2200—ports, VLANs,
and Layer 3 interfaces
,
urgent
EX3200 and
|
EX4200—ports, VLANs,
and Layer 3 interfaces
EX4500—ports, VLANs,
and Layer 3 interfaces
EX8200—ports, VLANs,
and Layer 3 interfaces
EX2200—ports, VLANs,
and Layer 3 interfaces
EX3200 and
EX4200—ports, VLANs,
and Layer 3 interfaces
EX4500—ports, VLANs,
and Layer 3 interfaces
EX8200—ports, VLANs,
and Layer 3 interfaces
EX2200—not
supported
EX3200 and
EX4200—ports, VLANs,
and Layer 3 interfaces
EX4500—not
supported
EX8200—not
supported
, An
;
;
,
Egress
EX2200—not
supported
EX3200 and
EX4200—not
supported
EX4500—not
supported
EX8200—not
supported
EX2200—not
supported
EX3200 and
EX4200—not
supported
EX4500—not
supported
EX8200—not
supported
EX2200—not
supported
EX3200 and
EX4200—ports, VLANs,
and Layer 3 interfaces
EX4500—not
supported
EX8200—not
supported
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Chapters
Table of Contents
Troubleshooting
Related Manuals for Juniper JUNOS OS 10.3 - SOFTWARE
Related Products for Juniper JUNOS OS 10.3 - SOFTWARE
- Juniper IDP OS 5.1R1 - S REV 1
- Juniper JUNOS OS 10.4 - S REV 5
- Juniper JUNOS OS 10.4 - FOR EX REV 1
- Juniper JUNOS OS 10.4 - XML API OPERATIONAL
- Juniper IDP OS 5.1R1
- Juniper JUNOS SOFTWARE 10.2 - SOFTWARE INSTALLATION AND UPGRADE GUIDE 4-28-2010
- Juniper OCX1100
- Juniper ADVANCED INSIGHT SCRIPTS 2.5 - S REV 1