thanks a lot !!
But I think there is some difference between them.
set ethernet-switching-options secure-access-port interface ge-0/0/0.0 allowed-mac 00:23:23:aa:bb:01
This only allows the specified MAC.
but persistent learning just sticks the first learnt MAC to the port. not customized specified.
Right now, if I want to achieve the first one, I use the firewall filter
set interfaces xe-0/0/4 unit 0 family ethernet-switching filter input allowMAC
set firewall family ethernet-switching filter allowMAC term 1 from source-mac-address aa:bb:cc:00:a0:00/48
set firewall family ethernet-switching filter allowMAC term 1 then accept
set firewall family ethernet-switching filter allowMAC term 2 then discard
I am wondering any simple approach like the above in ELS.
Original Message:
Sent: 05-10-2021 01:03
From: Unknown User
Subject: any equivalent to secure-access-port in ELS ?
https://www.juniper.net/documentation/us/en/software/junos/security-services/topics/topic-map/understanding_and_using_persistent_mac_learning.html
this is what you are looking for.
Original Message:
Sent: 05-09-2021 17:35
From: Unknown User
Subject: any equivalent to secure-access-port in ELS ?
I came across the following:
set ethernet-switching-options secure-access-port interface ge-0/0/0.0 allowed-mac 00:23:23:aa:bb:01
Any equivalent to this in ELS ?
thanks !!