The technique I wrote in the tips section is primarily usefull to restrict by source address on an SRX. You would use this type of filter on an internet facing interface if you want SSH/SSL to be available on the internet and restrict which source addresses are able to use the service. This prevents anyone on the internet from being able to attempt to access the SRX.
You would apply the filter then at the interface being protected.
The SRX has the concept of zone and interface bases host services as Kevin mentions. If you want SSH/SSL off entirely for the internet interface then just remove this service from:
Security -- Zones -- Security Zone -- Untrust-- host-inbound-traffic--system services
http://www.juniper.net/techpubs/software/junos-security/junos-security10.2/junos-security-swconfig-security/topic-41194.html
On switches or packet based routers that don't have the security stanza, then the example I posted is used as it is shown.