SRX

I do understand the concept of a firewall filter and how to set one up.  However, let's say I want to block 222.x.x.x?

The current example would allow me to block the Class C 222.34.32.0/24.  I want to block the ENTIRE CLASS A. 

What would be the set command for that when setting up my filter?  Right now I have:

term 1{

             from {

                     source-address {

                                                     222.73.227.0/24. 

I want to block ALL of 222. 

JamesNT

The network would be 222.0.0.0/8

Hello Sir,

i am new to junos, How i can block the ip address (eg 164.5.3.3 and 167.3.4.4)? from internet to my network

Mx480 >>>>>>inteface g0/0/3.0 (Internet )

Firewall filter
--------------------

B-GW01# set prefix-list PREFIX-LIST-1 164.5.3.3/32
B-GW01# set prefix-list PREFIX-LIST-1 167.3.4.4/32

[edit policy options policy-statement addresses-to-reject ]

B-GW01# set term 1 from prefix-list PREFIX-LIST-1
B-GW01# set term 1 then reject

[edit interfaces g-0/0/3 ]
B-GW01# set unit 0 family inet filter input PREFIX-LIST-1
B-GW01# set unit 0 family inet filter output PREFIX-LIST-1

Shenoi,

Are you trying to create a firewall filter to drop traffic from these two source addresses?

Or are you trying to create a prefix list to reject learning routes in BGP for these addresses?