Goor morning,
i try to configure a routing-instance with a firewall filter, but whem i try to ping a destination 200.130.6.181/32, i receive the follow menssage:
# run ping 200.130.6.181
PING 200.130.6.181 (200.130.6.181): 56 data bytes
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
^C
--- 200.130.6.181 ping statistics ---
3 packets transmitted, 0 packets received, 100% packet loss
My config is:
# show interfaces ge-0/0/4
description WAN;
unit 0 {
family inet {
filter {
input filter-in;
output internet-isp2;
}
# show firewall filter internet-isp2
term to-isp2 {
from {
destination-address {
200.130.6.181/32;
}
}
then {
count internet-isp2;
routing-instance ISP2;
}
}
term accept-others {
then accept;
}
# show routing-instances ISP2
instance-type virtual-router;
interface ge-0/0/5.620;
routing-options {
static {
route 0.0.0.0/0 {
next-hop x.x.x.x;
qualified-next-hop y.y.y.y {
preference 10;
}
}
}
}
#firewall#filter#routing-instances