Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

Juniper ScreenOS routing policy configuration

2025-03-31 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

1. Introduction to the topology diagram scenario:

The two ISP lines are connected to the E0Unipedia 0 and E0 / 1 ports of SSG5 respectively.

The traffic of VLAN1:172.16.1.0/24 is required to take E0ram0.

The traffic requirement of VLAN2:172.16.2.0/24 is E0ramp 1 port.

Define ACL (in routing configuration mode)

Set vrouter "trust-vr" set access-list extended 10 src-ip 172.16.1.0 dst-port 24 dst-ip 0.0.0.0 protocol any entry 10set access-list extended 0 src-port 1-65535 dst-port 1-65535 protocol any entry 10set access-list extended 10 src-ip 172.16.1.0 protocol any entry 10set access-list extended 24 dst-ip 0.0.0.0 protocol any entry 10set access-list extended 0 protocol icmp entry 20set access-list extended 20 src-ip 172.16.2.0 protocol any entry 10set access-list extended 24 dst-ip 0.0.0.0 protocol any entry 10set access-list extended 0 src-port 1- 65535 dst-port 1-65535 protocol any entry 10set access-list extended 20 src-ip 172.16.2.0 protocol icmp entry 20exit 24 dst-ip 0.0.0.0

Define match group (in routing configuration mode)

Set vrouter "trust-vr" set match-group name group_10set match-group group_10 ext-acl 10 match-entry 10set match-group name group_20set match-group group_20 ext-acl 20 match-entry 10exit

Define action group (in routing configuration mode)

Set vrouter "trust-vr" set action-group name action_10set action-group action_10 next-interface ethernet0/0 action-entry 10set action-group name action_20set action-group action_20 next-interface ethernet0/1 action-entry 10exit

Define policy (in routing configuration mode)

Set vrouter "trust-vr" set pbr policy name pbr_trustset pbr policy pbr_trust match-group group_10 action-group action_10 10set pbr policy pbr_trust match-group group_20 action-group action_20 20exit

Configure policy binding (in configuration mode)

Set pbr pbr_trustset zone Trust pbr pbr_trustset interface bgroup0 pbr pbr_trustset interface bgroup1 pbr pbr_trustset interface bgroup2 pbr pbr_trustset interface bgroup3 pbr pbr_trust

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Configuration patterns routing traffic scenarios topologies topology diagrams lines access policies vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Docker OPPO Reno MariaDB Huawei NVidia Xiaomi Linux Microsoft Shulou Technology Apple Redmi Shulou Tech Info Shulou Information MySQL vpn macOS Docker OPPO Reno MariaDB Huawei NVidia Xiaomi Linux Microsoft Shulou Technology Apple Redmi Shulou Tech Info Shulou Information MySQL vpn macOS

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report