Hi Vossa
First create a firewall filter family ethernet switching matching the destination address that you wanted to block and then apply it on the VLAN
root# show firewall
family ethernet-switching {
filter FILTER1 {
term TERM1 {
from {
ip-destination-address {
192.168.11.5/32;
}
}
}
}
}
{master:0}[edit]
root#
_________________________________________
root# show vlans
VLAN10 {
vlan-id 10;
forwarding-options {
filter {
input FILTER1;
}
}
}
default {
vlan-id 1;
l3-interface irb.0;
}
You can refer this link for more examples : https://www.juniper.net/techpubs/en_US/junos16.1/topics/example/firewall-filter-ex-series-configuring.html#jd0e1308
Thanks
Arul