EVPN/VXLAN MAC filtering and transit VNI match support for pure IPv6 underlay

We support MAC filtering on a Layer 2 interface in the EVPN-VXLAN context. We've also implemented VXLANnetwork identifier (VNI) matching on source and destination IP outer headers for transit traffic on a Layer 3 interface. VNI matches are made on outer headers only, and on ingress traffic only. On transit devices that are routing tunnel packets, MAC filtering must support the matching of VNI in the outer header, along with outer header source and destination IPv6 addresses as match conditions. Use the VNI match filter under the vxlan match CLI option for the set firewall family inet6 filter term from vxlan vni vni-id command. Use the show firewall filter command to display statistics.