Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Understanding Firewall Filters Used to Control Traffic Within Bridge Domains and VPLS Instances

Juniper Networks MX Series 5G Universal Routing Platforms support firewall filters for the bridge and vpls protocol families. You configure these firewall filters to control traffic within bridge domains and VPLS instances. This topic explores some of the ways that filters can be used in a Layer 2 environment to control traffic.

MX Series router firewall filters can be applied to:

  • Input interfaces

  • Output interfaces

  • Input to the Layer 2 forwarding table

You use a firewall filter after taking the following two steps:

  1. You configure any policers and the firewall filter at the [edit firewall] hierarchy level.

  2. You apply the properly configured firewall filter to an interface or bridge domain.

Note:

If the chassis is running in Enhanced IP mode, a single shared filter instance is created for a filter applied across bridge domains. Otherwise, separate filter instances are created for each bridge domain that the filter is applied to.