Juniper says :
"Firewall filters applied to the loopback interface affect the local packets destined for or transmitted from the Routing Engine."
As you can see the source and destination address of my user traffic, it's not destinated to the routeur IP interface. When traffic is coming from the router, (from ge-1/0/31), the destination mac address will be set to the switch (EX4300) mac address interface. The destination IP (user IP) remain the same. From my point of view this is transit traffic. If I'm wrong, it means, when we configure a firewall filter on the loopback interface on a EX switch which has many SVI for "local" vlan, that we need to add a DEFAULT term that allow all user/servers traffic....
I know there is some traffic traffic, whatever is transit or not, that is handle by the RE. Example, with the IP option set. But I do have a term at the beginning of the filter that drop this can of traffic. Is there any other special traffic not destinatated to the RE that will be handle by the RE whatever is transit or not....?
--Salah