[j-nsp] Filter weirdness - bug?
Daniel Verlouw
daniel at bit.nl
Tue Jun 17 13:00:49 EDT 2008
On Jun 17, 2008, at 6:17 PM, Eric Van Tol wrote:
> What happens is that incoming SSH from *any* address hits "term 10-
> allow_local_nets" and matches. If I take out the prefix-list and
> put specific source addresses, it works fine. I'd like to know if
> I've missed something obvious before opening up a JTAC case.
prefix-list matches on source and/or destination IP address. You're
probably looking for source-prefix-list or destination-prefix-list
instead.
--Daniel.
More information about the juniper-nsp
mailing list