[Contents] [Prev] [Next] [Index] [Report an Error]

Configuring Filters or Sampling on Aggregated SONET/SDH Links

To set up firewall filters or sampling on aggregated SONET/SDH interfaces, you must configure the asx interface with these properties. The filters function in the same manner as on other interfaces.

To configure a filter, include the filter statement:



filter {
input input-filter-name;
output output-filter-name;
}

You can include this statement at the following hierarchy levels:

[edit interfaces as x unit logical-unit-number]
[edit logical-systems logical-system-name interfaces asx unit logical-unit-number]

You must also configure separate statements that define the properties of the filter. For more information, see the JUNOS Policy Framework Configuration Guide and Examples: Configuring Filters or Sampling on Aggregated SONET/SDH Links.

Examples: Configuring Filters or Sampling on Aggregated SONET/SDH Links

Configure filtering on aggregated SONET/SDH interfaces:



[edit interfaces]
asx {


unit 0 {


family inet {


address 10.2.11.1/32 {
destination 10.2.11.3;
}




filter {
input input-filter-name;
output output-filter-name;
}


}


}


}

Defining the Filter



[edit firewall]
filter input-filter-name {


term match-any-input {


then {
accept;
}


}


}
filter output-filter-name {


term match-any-output {


then {
accept;
}


}


}

Configuring Sampling on an Aggregated SONET/SDH Interface



[edit interfaces]
asx {


unit 0 {


family inet {


address 10.2.11.1/32 {
destination 10.2.11.3;
}




filter {
input input-sampler-name;
}


}


}


}

Defining the Sampling Filter and the Forwarding Action



[edit firewall]
filter input-sampler-name {


term match-any-input {


then {
sample;
accept;
}


}


}
[edit forwarding-options]
sampling {


input {


family inet {
rate 10000;
run-length 1;
}


}


}

[Contents] [Prev] [Next] [Index] [Report an Error]