[Contents] [Prev] [Next] [Index] [Report an Error]

Configuring a Stateful Firewall

You define rules that specify the NAT pool (media service) used on a specific VPG.

CLI Quick Configuration

To quickly define the rules, copy the following commands and paste them into the router terminal window:

[edit services stateful-firewall]
set rule r1 match-direction input-outputset rule r1 term t1 then reject

Step-by-Step Procedure

To create a stateful firewall:

  1. Create a stateful firewall rule.
    [edit services stateful-firewall]
    user@host#edit rule r1
  2. Set the match direction for the rule.
    [edit services stateful-firewall rule r1]
    user@host#set match-direction input-output
  3. Add a term to the rule with the action set to reject.
    [edit services stateful-firewall rule r1]
    user@host#set term t1 then reject

Configuration Results

Display the results of the configuration.

[edit services stateful-firewall]
user@sp-pg-router# show
rule r1 {
match-direction input-output;
term t1 {
then {
reject;
}
}
}
[Contents] [Prev] [Next] [Index] [Report an Error]

Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice.