Routing
Routing

firewall filter behaviour

‎11-28-2018 05:27 AM

Hi All,

 

Lets say I have an interface:

ae2.432

with 2 IP address

set interfaces ae2 unit 432 family inet address 1.1.1.1/24
set interfaces ae2 unit 432 family inet address 2.2.2.2/24
set interfaces ae2 unit 432 family inet filter output Output-Filter

The filter is for the time being rejecting-all.
Question: is the communication allow between 1.1.1.0/24 and 2.2.2.0/24?
e.g. can a server says the 1.1.1.4 open an ssh connection to 2.2.2.4 or the filter will reject the request?

thanks.

2 REPLIES 2
Routing
Solution
Accepted by topic author FabNewCert
‎11-29-2018 02:14 AM

Re: firewall filter behaviour

‎11-28-2018 05:33 PM

My understanding is that it will be blocked as it is treated as transit traffic. 

Routing

Re: firewall filter behaviour

‎11-29-2018 02:15 AM

right, filter must be extended to allow the traffic in both directions