 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
In the from statement in the VPLS filter term, you specify conditions that the packet must match for the action in the then statement to be taken. All conditions in the from statement must match for the action to be taken. The order in which you specify match conditions is not important, because a packet must match all the conditions in a term for a match to occur.
If you specify no match conditions in a term, that term matches all packets.
An individual condition in a from statement can contain a list of values. For example, you can specify numeric ranges or multiple source or destination addresses. When a condition defines a list of values, a match occurs if one of the values in the list matches the packet.
Individual conditions in a from statement can be negated. When you negate a condition, you are defining an explicit mismatch. For example, the negated match condition for forwarding-class is forwarding-class-except. If a packet matches a negated condition, it is immediately considered not to match the from statement, and the next term in the filter is evaluated, if there is one; if there are no more terms, the packet is discarded.
To specify the match conditions for a VPLS filter term, include the from statement at the [edit firewall family vpls filter filter-name term term-name] hierarchy level. Table 13 describes the match conditions available for VPLS filters.
- [edit firewall family vpls filter filter-name term term-name]
- from match-conditions;
Table 13: VPLS Filter Match Conditions
| Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |