How to configure PBR on ruijie EG?
I want VLAN 1 go through WAN 1, VLAN 2 go through WAN 2, how can I do it?You can use the policy route to do it, for example
vlan 1 is 192.168.1.0 vlan 2 is 192.168.2.0.
WAN 1 is 10.100.10.1,gateway is 10.100.10.254
WAN 2 is 10.100.11.1,gateway is 10.100.11.254
Step 1 click route policy-base route, click add ACL
https://img2.sobot.com/console/eee7ec2e351e4569a4791536fb5f0973/kb/image/3e21687cf80a4409bbfffea456916398.png
Step 2, Add two ACL 10 and 11,set ACE to permit 192.168.1.0 and 192.168.2.0
https://img2.sobot.com/console/eee7ec2e351e4569a4791536fb5f0973/kb/image/86ba4411238d4994a79d1a48d01f8e4b.png
https://img2.sobot.com/console/eee7ec2e351e4569a4791536fb5f0973/kb/image/a640e08160ae426395bee00fd45fec2f.png
Step 3 Configure Policy route
https://img2.sobot.com/console/eee7ec2e351e4569a4791536fb5f0973/kb/image/a31f1cab3d35466c838d1cb6a6111f94.png
https://img2.sobot.com/console/eee7ec2e351e4569a4791536fb5f0973/kb/image/aaec978cfc0543bb8bdd5ffa1f9fc7ae.png
Finished
https://img2.sobot.com/console/eee7ec2e351e4569a4791536fb5f0973/kb/image/ed54a5226f744b868f46afd411027fd3.png
this is for VLAN, what about specific IP address (one client/server) only?
The Wi-Fi Hero replied at 2023-7-20 12:48
this is for VLAN, what about specific IP address (one client/server) only?
Dear sir
You can configure the ACLto match the specific IP address here and apply the ACL on different PBR rules.
data/attachment/forum/202307/20/132317uo8giagnzgszgiye.png
Best regards
Jenny
GTAC-Jenny replied at 2023-7-20 13:23
Dear sir
You can configure the ACLto match the specific IP address here and apply the ACL on di ...
do i have to enable default route for both WAN?
The Wi-Fi Hero replied at 2023-7-21 09:44
do i have to enable default route for both WAN?
Dear sir
Yes, the default route will be added by default when you set the port to WAN port to make sure the user internet access. You can type this command: show ip route to check the EG routing.
Best regards
Jenny
hello how about 3 ISP
i want this vlan10 go only ISP 1
but vlan 20 go only ISP 2 and ISP 3
Will the Extended ACL work with PBR also?
For example,
when the Destination port is UDP 443, the Route to wan1
when the Source port is UDP 53, the Route to wan2
Pages:
[1]