The term you need is discard. You also need to specify your ge-0/1/0 and vlan.71 external addresses as destinations in your filter's terminal_access_denied term or you will block all transited ssh and telnet traffic--these are revenue ports not management interfaces. As Steve noted you also need to apply the filter to your externally facing interfaces.
↧