R3166-R3206-HP High-End Firewalls High Availability Configuration Guide-6PW101
49
Configuration prerequisites
Before you associate track with PBR, create a policy or a policy node and configure the match criteria as
well.
Configuration procedure
Follow these steps to associate track with PBR:
To do… Use the command…
Remarks
Enter system view
system-view —
Create a policy or policy node and
enter the PBR policy node view
policy-based-route policy-name { deny |
permit } node node-number
Required
Define a packet length match
criteria
if-match packet-length min-len max-len
Required
Use either command.
Define an ACL match criterion
if-match acl acl-number
Set the outgoing interface, and
associate it with a track entry
apply output-interface interface-type
interface-number [ track track-entry-number ]
[ interface-type interface-number [ track
track-entry-number ] ]
Use at least one of the
four commands.
Set the next hop and associate it
with a track entry
apply ip-address next-hop ip-address [ track
track-entry-number ] [ ip-address [ track
track-entry-number ] ]
Set the default outgoing interface,
and associate it with a track entry
apply default output-interface interface-type
interface-number [ track track-entry-number ]
[ interface-type interface-number [ track
track-entry-number ] ]
Set the default next hop, and
associate it with a track entry
apply ip-address default next-hop ip-address
[ track track-entry-number] [ ip-address [ track
track-entry-number] ]
NOTE:
• You can associate a nonexistent track entry with PBR. The association takes effect only after you use the
track command to create the track entry.
• For more information about PBR, see
Network Management Configuration Guide
.
Associating track with interface backup
Interface backup allows interfaces on a device to back up each other, with the active interface
transmitting data and the standby interfaces staying in the backup state. When the active interface or the
link where the active interface resides fails, and data cannot be transmitted, a standby interface is
brought up to transmit data, enhancing the reliability of the network.
Associate a standby interface with a track entry so that the standby interface can detect the status of the
active interface by checking the status of the track entry and changes its status.
• The Positive state of the track entry shows that the link where the active interface resides works
normally, and the standby interfaces stay in the backup state.
• The Negative state of the track entry shows that the link where the active interface resides has failed,
and a standby interface changes to the active interface for data transmission.