05-28-2012 05:06 PM
I do understand the concept of a firewall filter and how to set one up. However, let's say I want to block 222.x.x.x?
The current example would allow me to block the Class C 22.214.171.124/24. I want to block the ENTIRE CLASS A.
What would be the set command for that when setting up my filter? Right now I have:
I want to block ALL of 222.
Solved! Go to Solution.
05-28-2012 05:36 PM
The network would be 126.96.36.199/8
11-07-2013 05:50 AM
i am new to junos, How i can block the ip address (eg 188.8.131.52 and 184.108.40.206)? from internet to my network
Mx480 >>>>>>inteface g0/0/3.0 (Internet )
B-GW01# set prefix-list PREFIX-LIST-1 220.127.116.11/32
B-GW01# set prefix-list PREFIX-LIST-1 18.104.22.168/32
[edit policy options policy-statement addresses-to-reject ]
B-GW01# set term 1 from prefix-list PREFIX-LIST-1
B-GW01# set term 1 then reject
[edit interfaces g-0/0/3 ]
B-GW01# set unit 0 family inet filter input PREFIX-LIST-1
B-GW01# set unit 0 family inet filter output PREFIX-LIST-1
11-09-2013 05:37 AM
Are you trying to create a firewall filter to drop traffic from these two source addresses?
Or are you trying to create a prefix list to reject learning routes in BGP for these addresses?