[Contents]
[Prev]
[Next]
[Index]
[Report an Error]
Example: Accepting OSPF Packets from Certain Addresses
Accept only Open Shortest Path First (OSPF) packets
from an address in the prefix 10.108.0.0/16, discarding all
other packets with an administratively-prohibited ICMP message:
- [edit]
- firewall {
-
- family inet {
-
- filter ospf-filter {
-
- term term1 {
-
- from {
-
- source-address {
- 10.108.0.0/16;
- }
- protocol ospf;
- }
- }
-
- term default-term {
-
- then {
- reject administratively-prohibited; # default reject action
- }
- }
- }
- }
- }
[Contents]
[Prev]
[Next]
[Index]
[Report an Error]
