Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Example: Configuring a Filter to Match on IPv6 Flags

This example shows how to configure a filter to match on IPv6 TCP flags.

Requirements

No special configuration beyond device initialization is required before configuring this example.

Overview

In this example, you configure a filter to match on IPv6 TCP flags. You can use this example to configure IPv6 TCP flags in M Series, MX Series, and T Series routing devices.

Configuration

Procedure

Step-by-Step Procedure

To configure a filter to match on IPv6 TCP flags:

  1. Include the family statement at the firewall hierarchy level, specifying inet6 as the protocol family.

  2. Create the stateless firewall filter.

  3. Define the first term for the filter.

  4. Define the source address match conditions for the term.

  5. Define the actions for the term.

  6. If you are done configuring the device, commit the configuration.

Verification

To confirm that the configuration is working properly, enter the show firewall filter tcpfilt command.