Referring to the exhibit, you are asked to rate-limit traffic from Web-Server to the subnet where
Mal-User is located. All other traffic should be permitted.
Which firewall filter configuration do you use?
A.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
100.100.100.10/32;
}
destination-address {
200.200.200.0/24;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
}
B.
[edit firewall]
user@router# show
policer LIMIT-BAD-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
100.100.100.10/32;
}
destination-address {
200.200.200.0/24;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
}
C.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
100.100.100.10/32;
}
destination-address {
200.200.200.0/24;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then reject;
}
}
}
D.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
200.200.200.0/24;
}
destination-address {
100.100.100.10/32;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
}
Explanation:
D.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
200.200.200.0/24;
}
destination-address {
100.100.100.10/32;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
correction A