 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
You cannot explicitly define traffic with specific source MAC addresses to be rejected; however, for Gigabit Ethernet IQ and Gigabit Ethernet PICs with SFPs (except the 10-port Gigabit Ethernet PIC and the built-in Gigabit Ethernet port on the M7i platform), you can block all incoming packets that do not have a source address specified in the accept-source-mac statement. For more information about the accept-source-mac statement, see Applying a Policer.
To enable this blocking, include the source-filtering statement at the [edit interfaces interface-name gigether-options] hierarchy level:
- [edit interfaces interface-name gigether-options]
-
source-filtering;
For more information about the source-filtering statement, see Enabling Ethernet MAC Address Filtering.
To accept traffic even though it does not have a source address specified in the accept-source-mac statement, include the no-source-filtering statement at the [edit interfaces interface-name gigether-options] hierarchy level:
- [edit interfaces interface-name gigether-options]
- no-source-filtering;
For more information about the accept-source-mac statement, see Applying a Policer.
| Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |