[Contents] [Prev] [Next] [Index] [Report an Error]

Configuring an Inbound Traffic Filter

To configure an inbound traffic filter, include the filter statement at the [edit firewall] hierarchy level:



filter filter-name {


term term-name {


from {

match-conditions;
}




then {

action; 

action-modifiers; 
}


}


}

For more information, see the JUNOS Policy Framework Configuration Guide.

Example: Configuring an Inbound Traffic Filter

Configure an inbound firewall filter. This filter performs the final IPSec policy check and is created on security gateway A. The policy check ensures that only packets that match the traffic configured for this tunnel are accepted.



[edit firewall]
filter ipsec-decrypt-policy-filter {
term term1 {                                  # perform
policy check


from {
source-address {                      # remote network
10.2.2.0/24; 
}


destination-address {                 # local network
10.1.1.0/24; 
}
then accept;

[Contents] [Prev] [Next] [Index] [Report an Error]