Juniper’in direkt kendi sitesinde example bulunuyor. Aşağıdaki uygulamak yeterli.

set firewall family inet filter RE_FILTER term SSH from source-address x.x.x.x/32
set firewall family inet filter RE_FILTER term SSH from source-address x.x.x.x/32
set firewall family inet filter RE_FILTER term SSH from destination-address 0.0.0.0/0
set firewall family inet filter RE_FILTER term SSH from protocol tcp
set firewall family inet filter RE_FILTER term SSH from destination-port ssh
set firewall family inet filter RE_FILTER term SSH then count allow.ssh
set firewall family inet filter RE_FILTER term SSH then accept
set firewall family inet filter RE_FILTER term SSH_BLOCK from destination-address 0.0.0.0/0
set firewall family inet filter RE_FILTER term SSH_BLOCK from protocol tcp
set firewall family inet filter RE_FILTER term SSH_BLOCK from destination-port ssh
set firewall family inet filter RE_FILTER term SSH_BLOCK then count discard.ssh
set firewall family inet filter RE_FILTER term SSH_BLOCK then discard
set firewall family inet filter RE_FILTER term default then accept
set interfaces lo0 unit 0 family inet filter input RE_FILTER

Source adrese, bağlanmak istediğimiz ip adresi, istersek destination’a belirli ip adresini (bende çok prefix var, ondan direkt 0.0.0.0 verdim) loopback’e de filtreyi yazmamız yeterli