Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Announcement: Try the Ask AI chatbot for answers to your technical questions about Juniper products and solutions.

close
external-header-nav
Documentation
Menu
License Guide
Quick Starts
Validated Designs
Explore Pathfinder Apps
CLI Explorer
Feature Explorer
Hardware Compatibility Tool
Port Checker
Browse All
Collapse

Pathfinder Apps

All

By Software

By Hardware

Learn More
Pathfinder HomeCLI ExplorerCompliance AdvisorFeature ExplorerHardware Compatibility ToolJunos XML API ExplorerJunos YANG Data Model ExplorerPort CheckerPower CalculatorSNMP MIB ExplorerSystem Log Explorer
CLI ExplorerFeature ExplorerJunos XML API ExplorerJunos YANG Data Model ExplorerSNMP MIB ExplorerSystem Log Explorer
Compliance AdvisorFeature ExplorerHardware Compatibility ToolPort CheckerPower Calculator
Home Documentation Junos OS Junos CLI Reference CLI Reference F

Junos CLI Reference

keyboard_arrow_up
close
keyboard_arrow_left
Junos CLI Reference
Table of Contents Expand all
list Table of Contents
file_download PDF
{ "lLangCode": "en", "lName": "English", "lCountryCode": "us", "transcode": "en_US" }
English
ON THIS PAGE
keyboard_arrow_right

family (Firewall)

date_range 19-Nov-23
arrow_backward
arrow_forward

Syntax

content_copy zoom_out_map
family family-name {
    filter filter-name {
        accounting-profile name;
        enhanced-mode;
        interface-specific;
        physical-interface-filter;
    }
    prefix-action name {
        count;
        destination-prefix-length prefix-length;
        policer policer-name;
        source-prefix-length prefix-length;
        subnet-prefix-length prefix-length;
    }
    simple-filter filter-name {
        term term-name {
            from {
                match-conditions;
            }
            then {
                action;
                action-modifiers;
            }
        }
    }
}

Hierarchy Level

content_copy zoom_out_map
[edit firewall],
[edit logical-systems logical-system-name firewall]

Description

Configure a firewall filter for IP version 4 (IPv4) or IP version 6 (IPv6) traffic. Only on MX Series routers and EX Series switches, configure a firewall filter for Layer 2 traffic in a bridging environment.

Options

family-name—Version or type of addressing protocol:

  • any—Protocol-independent match conditions.

  • bridge—(MX Series routers only) Layer 2 packets that are part of bridging domain.

  • ethernet-switching—(EX Series switches) Filter Layer 2 (Ethernet) packets and Layer 3 (IP) packets.

  • ccc—Layer 2 switching cross-connects.

  • inet—IPv4 addressing protocol.

  • inet6—IPv6 addressing protocol.

  • mpls—MPLS.

  • vpls—Virtual private LAN service (VPLS).

The remaining statements are explained separately. See CLI Explorer.

Note:

The packet lengths that a policer considers depends on the address family of the firewall filter.

Required Privilege Level

interface—To view this statement in the configuration.

interface-control—To add this statement to the configuration.

Release Information

Statement introduced before Junos OS Release 7.4.

Logical systems support introduced in Junos OS Release 9.3.

simple-filter statement introduced in Junos OS Release 7.6.

any family type introduced in Junos OS Release 8.0.

bridge family type introduced in Junos OS Release 8.4 (MX Series routers only).

Related Documentation

arrow_backward PREVIOUS family (Filtering)
NEXT arrow_forward family (Firewall Filter)
external-footer-nav