On 10/13/2011 09:40 AM, Daniel M Daloia Jr wrote: > Hi Folks, > > Is there any reason why I shouldn't allow ssh access to a remote SRX > with a firewall filter only allowing a single network on an untrust > (reth) interface? Maybe should create a loopback instead, allow > system-services ssh, and apply the filter there? My thought for > using a lo interface is why force all traffic through the filter just > for a system service?
use the loopback filter. _______________________________________________ juniper-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/juniper-nsp
