I have done this before but it has been a while
basic from wire to see traffic enter a port and leave a port
set firewall family ethernet-switching filter TEST term TERM1 from source-address 0.0.0.0/0
set firewall family ethernet-switching filter TEST term TERM1 from destination-address 10.10.10.10
set firewall family ethernet-switching filter TEST term TERM1 then accept
set firewall family ethernet-switching filter TEST term TERM1 then log
set firewall family ethernet-switching filter TEST term TERM2 from source-address 10.10.10.10
set firewall family ethernet-switching filter TEST term TERM2 from destination-address 0.0.0.0/0
set firewall family ethernet-switching filter TEST term TERM2 then accept
set firewall family ethernet-switching filter TEST term TERM2 then log
set firewall family ethernet-switching filter TEST term Accept-The-Rest then accept
set interfaces ge-1/0/23 description "external Router Connection A"
set interfaces ge-1/0/23 unit 0 family ethernet-switching port-mode access
set interfaces ge-1/0/23 unit 0 family ethernet-switching vlan members Outside
I'm not sure why this is not working. I have done this many times before to check fo traffic, the other port is an AE1-2 L2 port
this should log the packets to the "show firewall log" command
i tried it with one term only and on one port only, still nothing
i even tried it with all 0/0 and the only thing i pick up is L2 traffic.
12.3R12-S12