I´m trying to configure access control restriction on my M7i box, but isn´t working. I tried apply the firewall filter on all the interfaces of router, without success.I have ge-0/0/0 connected to internal network and fe-0/2/0 connected to ISP provider. See my config below. I want only certain networks to access the router:
firewall {
family inet {
filter local_access_control {
term terminal-access {
from {
address {
200.X.X.X/28;
177.X.X.X/25;
}
protocol tcp;
port [ ssh telnet ];
}
then accept;
}
term terminal-access_denied {
from {
protocol tcp;
port [ ssh telnet ];
}
then {
log;
reject;
}
}
term default-term {
then accept;
}
}
}
}