[j-nsp] protect ssh and telnet

Fri Apr 15 16:12:07 EDT 2016

Right, that’s what I saw recently when working through a case with JTAC…

 

I need a solution that will…

1 – apply to ONLY my direct/local actual ip addresses on my ACX5048

2 – apply to ONLY routing-instance vrf “one”

 

 

 <https://webmail.gvtc.net/owa/redir.aspx?C=a19b8644071049cdb814656cd0485639&URL=mailto%3aagould%40eng-lab-acx5048-1> agould at eng-lab-acx5048-1# show policy-options prefix-list all-internet | display inheritance
##
## apply-path was expanded to:
##     10.101.14.124/30;
##     10.101.14.108/30;
##     1.2.3.64/28;
##     10.95.255.0/26;
##     10.101.12.245/32;
##
apply-path "interfaces <*> unit <*> family inet address <*>";