<load-configuration format="xml">
<configuration>
<interfaces>
<interface>
<name>et-0/0/0</name>
<unit>
<name>0</name>
<family>
<inet>
<filter>
<input>
<filter-name>fw_filter</filter-name>
</input>
</filter>
</inet>
</family>
</unit>
</interface>
<interface>
<name>et-0/0/10</name>
<unit>
<name>0</name>
<family>
<inet>
<filter>
<input>
<filter-name>fw_filter</filter-name>
</input>
</filter>
</inet>
</family>
</unit>
</interface>
<interface>
<name>et-0/0/20</name>
<unit>
<name>0</name>
<family>
<inet>
<filter>
<input>
<filter-name>fw_filter</filter-name>
</input>
</filter>
</inet>
</family>
</unit>
</interface>
</interfaces>
<forwarding-options>
<port-mirroring>
<instance>
<name>tcp80</name>
<family>
<inet>
<output>
<interface>
<name>et-0/0/30.0</name>
<next-hop>
<name>200.0.10.2</name>
</next-hop>
</interface>
</output>
</inet>
</family>
</instance>
<instance>
<name>tcp443</name>
<family>
<inet>
<output>
<interface>
<name>et-0/0/30.0</name>
<next-hop>
<name>200.0.10.2</name>
</next-hop>
</interface>
</output>
</inet>
</family>
</instance>
<instance>
<name>udp123</name>
<family>
<inet>
<output>
<interface>
<name>et-0/0/30.0</name>
<next-hop>
<name>200.0.10.2</name>
</next-hop>
</interface>
</output>
</inet>
</family>
</instance>
</port-mirroring>
</forwarding-options>
<firewall>
<family>
<inet>
<filter>
<name>fw_filter</name>
<term>
<name>tcp80</name>
<from>
<destination-address>
<name>1.1.1.1/32</name>
</destination-address>
<protocol>tcp</protocol>
<destination-port>80</destination-port>
</from>
<then>
<port-mirror-instance>tcp80</port-mirror-instance>
<discard>
</discard>
</then>
</term>
<term>
<name>tcp443</name>
<from>
<destination-address>
<name>2.2.2.2/32</name>
</destination-address>
<protocol>tcp</protocol>
<destination-port>443</destination-port>
</from>
<then>
<port-mirror-instance>tcp443</port-mirror-instance>
<discard>
</discard>
</then>
</term>
<term>
<name>udp123</name>
<from>
<source-address>
<name>3.3.3.3/32</name>
</source-address>
<protocol>udp</protocol>
<source-port>123</source-port>
</from>
<then>
<port-mirror-instance>udp123</port-mirror-instance>
<discard>
</discard>
</then>
</term>
<term>
<name>default</name>
<then>
<accept/>
</then>
</term>
</filter>
</inet>
</family>
</firewall>
</configuration>
</load-configuration>
<commit/>
'업무이야기 > Network' 카테고리의 다른 글
| Juniper EX2200 이중화 (1) | 2023.05.02 |
|---|---|
| Juniper Switch Virtual-Chassis (STACK) (0) | 2023.05.02 |
| Juniper VRRP and Load Sharing (0) | 2021.06.14 |
| Juniper show command (RSI : request support information) (0) | 2021.03.29 |
| Juniper Troubleshooting Commands (0) | 2021.03.29 |