Configuring Policy-based Route

Configuring a Policy-based Route

System > Network > Routing > Policy-based Route

Policy-based Route (PBR) is designed to select a router and forward data based on the source IP address, destination IP address and service type of a packet.

In the Policy-based Route page, you can perform the following actions:

Click New to create a new policy-based route and PBR rule.
Click Edit to edit the selected policy-based route.
Click Delete to delete the policy-based route.
Click Enable/Disable to enable or disable the selected PBR rules.
Click Priority to move the PBR rule to the top, to the bottom, to position before the specified ID, or to the position after the specified ID.
Click Bind To to bind the policy-based route to the interface or the zone.

Options in the Policy-based Route Configuration dialog:

Option	Description
PBR Name	Specifies a name for the policy-based route.
Virtual Router	Select a virtual router for the new route.
Type	Specifies the object type that the policy-based route binds to. You can select Zone, VR, or Interface.
Bind To	Binds the policy-base route to an interface or zone. Select an interface or zone from the drop-down list.

Options in the Rule Configuration dialog:

Option	Description
Basic
PBR Name	Specifies a name for the policy-based route.
Set Next Hop	Specifies a next hop for the PBR rule. Select the Set Next Hop check box, and then specify the type of the next hop in the box below, including: IP Address: Type the IP address into the text box, and the type of next hop will be an IP address. Interface: Select an interface from the drop-down list, and the type of next hop will be an interface.
Description	Type the information about the PBR rule.
Src Address
Type	The source address for the PBR rule can be an arbitrary combination between address entry, IP address, host name and IP range: IP address: To specify a source address type of IP Address, click this option button and type the IP address and netmask into the IP address and Netmask textboxes respectively. Host name: To specify a source address type of Hostname, click this option button and type the hostname into the Hostname textbox. IP range: To specify a source address type of IP Range, click this option button and type the start IP and end IP into the Start IP and End IP textboxes respectively. Address entry: To specify a source address type of Address Entry, click this option button and select an address entry from the Address entry drop-down list.
Add	Click Add to add the source address entry to the system. All the entries that have been added will be displayed in the list below.
Delete	Select entries you want to delete from the list, and then click Delete.
Src User
User Type	Configure the source user type for the PBR rule: User: To specify a source user type of User, click this option and select an AAA server and username from the AAA Server and User drop-down lists respectively. User Group: To specify a source user type of User Group, click this option and select an AAA server and user group name from the AAA Server and User Group drop-down lists respectively.
Add	Click Add to add the source user entry to the system. All the entries that have been added will be displayed in the list below.
Delete	Select the entry you want to delete from the list, and click Delete.
Dst Address
Type	The destination address for the PBR rule can be an arbitrary combination between address entry, IP address, hostname and IP range: IP address: To specify a source address type of IP Address, click this option button and type the IP address and netmask into the IP address and Netmask textboxes respectively. Hostname: To specify a source address type of Hostname, click this option button and type the hostname into the Hostname textbox. IP range: To specify a source address type of IP Range, click this option button and type the start IP and end IP into the Start IP and End IP textboxes respectively. Address entry: To specify a source address type of Address Entry, click this option button and select an address entry from the Address entry drop-down list.
Add	Click Add to add the destination address entry to the system. All the entries that have been added will be displayed in the list below.
Delete	Select entries you want to delete from the list, and then click Delete.
Service
Add	To add a service, select a service or service group in the left list and click Add to add the selected services to the right list.
Delete	To delete a service or service group, select the service or service group in the right list and then click Delete.
Application
Add	To add an application, select an application or application group in the left list and click Add to add the selected applications to the right list.
Delete	To delete an application or application group, select the application or application group in the right list and then click Delete.