Configure the Stateful Firewall Rule Set
The
rule-setstatement defines a collection of stateful firewall rules that determine what actions the router software performs on packets in the data stream. You define each rule by specifying a rule name and configuring terms. Then, you specify the order of the rules by including therule-setstatement at the [edit services stateful-firewall] hierarchy level:[edit services stateful-firewall]rule-setrule-set-name{rulerule-name1;rulerule-name2;rulerule-name3;...}The router software processes the rules in the order in which you specify them in the configuration. If a term in a rule matches the packet, the router performs the corresponding action and the rule processing stops. If no term in a rule matches the packet, processing continues to the next rule in the rule set. If none of the rules matches the packet, the packet is dropped by default.