Hi, I'm new to Juniper ACL, and find something can be easily done on Cisco switch but so difficult on Ex4200 switch. I tried to stop all the outgoing traffic from 10.33.108.128/28 behind the switch from going out, but allow all other traffic within 10.33.108.0/22 ...
I think I might have not explain in detail, allow me to do so. The command set vlans default switch-options interface-mac-limit 2 packet-action drop-and-log is acting at the vlan hierarchy level for every interface, effectively all interfaces can only ...
Thanks Elvin. Is there a way to exclude my trunk ports? I guess I could apply the interface-mac-limit at the interface level for every interface except trunks...is this what you would suggest?
It affects all interfaces including trunks. Elvin
# set vlans default switch-options interface-mac-limit 2 packet-action drop-and-log Will the above command affect a trunk port that has learned 20+ MACs on this VLAN?
Juniper is driving a company-wide initiative to further enhance our customers’ experience. Please tell us how we’re doing via a quick video that will be used for internal Juniper viewing only--none of it will be shared publicly!
Use your phone or laptop. It should take about 5-10 minutes, and you can review and re-record any segment at the click of a button.
Thank you in advance!