Hello Community
I have an issue with my firewall rules on my EX4600. I have a filter on
an interface with an incoming term:
from destination-address 1.2.3.0/24
then accept.
on the interface where 1.2.3.0/24 lives I have an outgoing filter with
for example term:
from destination-address 1.2.3.17/32
from destination-port 22
then discard
so my goal is to block 1.2.3.17/32 port 22 in the outgoing filter
because the term in the incoming filter is part of a filter set that is
configured on multiple interfaces.
Now the problem is that the discard rule is not working.
Has some one know how the EX4600 handle the order of the rules? What i
think is that the PFE hits the first accept rule and that the whole
process of the outgoing filter is skipped?
thanks,