[j-nsp] firewall policer
Bit Gossip
bit.gossip at chello.nl
Wed Apr 15 07:33:55 EDT 2009
platform MX480 junos 9.3
in the following config the same policer is appllied to 2 different
interfaces via 2 different firewall filters.
Will the policer police at 1 mbps the aggregate traffic of the 2
interfaces; or it will police independent at 1 mbps the 2 differrent
interfaces?
ge-5/2/1 {
unit 0 {
filter {
output F1;
}
}
}
ge-5/2/2 {
unit 0 {
filter {
output F2;
}
}
}
policer P {
if-exceeding {
bandwidth-limit 1000k;
burst-size-limit 15k;
}
then discard;
}
filter F1 {
term NATIONAL {
from {
source-class C1;
}
then {
policer P;
count C1;
accept;
}
}
term REMAINING {
then {
count REMAINING;
accept;
}
}
}
filter F2 {
term NATIONAL {
from {
source-class C2;
}
then {
policer P;
count C2;
accept;
}
}
term REMAINING {
then {
count REMAINING;
accept;
}
}
}
More information about the juniper-nsp
mailing list