 | Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
A stateless firewall filter evaluates the contents of packets transiting the device from a source to a destination, or packets originating from, or destined for, the Routing Engine. Stateless firewall filters applied to the Routing Engine interface protect the processes and resources owned by the Routing Engine. A stateless firewall filter evaluates every packet, including fragmented packets.
A stateless firewall filter, often called a firewall filter or access control list (ACL), statically evaluates packet contents. In contrast, a stateful firewall filter uses connection state information derived from past communications and other applications to make dynamic control decisions.
For information about security policies and stateful firewalls, see the JUNOS Software Security Configuration Guide.
You can use either the J-Web configuration editor or the CLI to configure stateless firewall filters.
This chapter contains the following topics. For more information about stateless firewall filters, see the JUNOS Policy Framework Configuration Guide.
| Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |