Hi,
Thanks for the link, I had gone through it and created a filter which is attached, howwver I am not able to go to internet, I am getting ip only. I creted the filter to allow any host - host within the same subnet, but block any other subnet traffic, but allow anything over the internet. could check and advise,
firewall {
family ethernet-switching {
filter VLAN-A {
term T1 {
from {
destination-port [ dhcp domain ];
}
then accept;
}
term T2 {
from {
source-address {
192.168.132.0/24;
}
destination-address {
192.168.132.0/24;
}
}
then accept;
}
term T3 {
from {
destination-address {
192.0.0.0/8;
}
}
then discard;
}
term Default {
then accept;
}
}
}
}