Understanding Firewall Filters Used to Control Traffic Within Bridge Domains and VPLS Instances
Juniper Networks MX Series 5G Universal Routing Platforms
support firewall filters for the bridge
and vpls
protocol families. You configure these firewall filters to control
traffic within bridge domains and VPLS instances. This topic explores
some of the ways that filters can be used in a Layer 2 environment
to control traffic.
MX Series router firewall filters can be applied to:
Input interfaces
Output interfaces
Input to the Layer 2 forwarding table
You use a firewall filter after taking the following two steps:
You configure any policers and the firewall filter at the
[edit firewall]
hierarchy level.You apply the properly configured firewall filter to an interface or bridge domain.
If the chassis is running in Enhanced IP mode, a single shared filter instance is created for a filter applied across bridge domains. Otherwise, separate filter instances are created for each bridge domain that the filter is applied to.