LV Network

Cấu hình đã test ở LAB , dự kiến apply cho core ở DC
set firewall family ethernet-switching filter icmp-deny-filter-1 term icmp-term from protocol icmp
set firewall family ethernet-switching filter icmp-deny-filter-1 term icmp-term from source-address 45.119.215.30/32
set firewall family ethernet-switching filter icmp-deny-filter-1 term icmp-term then discard
set firewall family ethernet-switching filter icmp-deny-filter-1 term 2 then accept

set interfaces ae10 unit 0 family ethernet-switching filter input icmp-deny-filter-1
set interfaces ae12 unit 0 family ethernet-switching filter input icmp-deny-filter-1

áp dụng port layer3
set firewall family inet filter icmp-deny-l3 term icmp-term from protocol icmp
set firewall family inet filter icmp-deny-l3 term icmp-term from source-address 0.0.0.0/0
set firewall family inet filter icmp-deny-l3 term icmp-term from destination-address 45.119.215.30/32
set firewall family inet filter icmp-deny-l3 term icmp-term then discard
set firewall family inet filter icmp-deny-l3 term Permit_ALL then accept

set interfaces ae1 unit 0 family inet filter input icmp-deny-l3
set interfaces ae2 unit 0 family inet filter input icmp-deny-l3