[j-nsp] Applying firewall filter to pfe
Erdem Sener
erdems at gmail.com
Mon Apr 17 12:58:03 EDT 2006
Thanks, I believe this'll do the trick :)
For the case of discard routes, there's always trouble of
'readvertising or not' withing the backbone, the reason I'm trying to
avoid most of the times.
Erdem
On 4/17/06, Domiciano Alonso Fernández <domiciano.alonso at gmail.com> wrote:
> You could try applying a filter at [forwarding-options family inet filter]
> level
> hth
>
>
> On 4/17/06, Chris Morrow <morrowc at ops-netman.net> wrote:
> >
>
> On Mon, 17 Apr 2006, Erdem Sener wrote:
> > I mean, let's assume we have an M series router with a bunch of
> > interfaces. Let's add a source address 1.2.3.4/32 that we don't want
> > to transit via any interface over the router.
> >
> > any ideas besides applying a firewall filter to _all_ interfaces?
>
> how about a local discard route and uRPF?
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/juniper-nsp
>
>
More information about the juniper-nsp
mailing list