Hello,
There are two vlans (employee and wifiguest), Firewall filters separate traffic on ex4200.
I would like to allow wifiguest to access a specific IP address on the employee vlan and no other resources.
Any help would be appreciated!
set policy-options prefix-list empvlan 1.1.1.0/24
set policy-options prefix-list empvlan 2.2.2.0/24
set firewall family ethernet-switching filter emp-100 term 1 from destination-address 1.1.1.0/24
set firewall family ethernet-switching filter emp-100 term 1 then accept
set firewall family ethernet-switching filter emp-100 term deny-other-knowns from destination-prefix-list empvlan
set firewall family ethernet-switching filter emp-100 term deny-other-knowns then discard
set firewall family ethernet-switching filter emp-100 term allow-unknown then accept
set firewall family ethernet-switching filter wifi-guest200 term 1 from destination-address 2.2.2.0/24
set firewall family ethernet-switching filter wifi-guest200 term 1 then accept
set firewall family ethernet-switching filter wifi-guest200 term deny-other-knowns from destination-prefix-list empvlan
set firewall family ethernet-switching filter wifi-guest200 term deny-other-knowns then discard
set firewall family ethernet-switching filter wifi-guest200 term allow-unknown then accept