R3166-R3206-HP High-End Firewalls Network Management Configuration Guide-6PW101
385
CAUTION:
• If a policy node has no if-match clause confi
g
ured, all packets can match the policy node. However, an
action is taken accordin
g
to the match mode, and the packets will not
g
o to the next policy node for a
match.
• If a permit-mode policy node has no apply clause configured, packets matching all the if-match clauses
of the node can pass the policy node, and no action is taken. The matchin
g
packets will not
g
o to the
next policy node for a match, and will be forwarded according to the routing table.
• If a policy node has neither if-match nor apply clauses configured, all packets can match the policy
node. However, no action is taken. The packets will not
g
o to the next policy node for a match, and will
be forwarded according to the routing table.
Configuring local PBR
Only one policy can be referenced for local PBR.
Follow these steps to configure local PBR:
To do… Use the command…
Remarks
Enter system view system-view ––
Configure local PBR ip local policy-based-route policy-name
Required
Not configured by default.
NOTE:
If the specified policy does not exist, the local PBR configuration succeeds, but it takes effect only when the
policy is created.
Configuring interface PBR
Only one policy can be referenced by an interface for interface PBR.
Follow these steps to configure interface PBR:
To do… Use the command…
Remarks
Enter system view system-view ––
Enter interface view interface interface-type interface-number
—
Configure interface PBR ip policy-based-route policy-name
Required
Not configured by default.
NOTE:
If the specified policy does not exist, the interface PBR configuration succeeds, but it takes effect only when
the policy is created.
Enabling Trap
After Trap is enabled for PBR, PBR generates Level-4 traps to report important events. The generated traps
are sent to the information center of the device. The output rules of the traps (whether to output the traps