Chapter 13 Policy and Static Routes

Table 77 Configuration > Network > Routing > Policy Route > Edit (continued)

LABEL

DESCRIPTION

Source

Select none to not use NAT for the route.

Network

Select outgoing-interfaceto use the IP address of the outgoing

Address

interface as the source IP address of the packets that matches this

Translation

route. If you select outgoing-interface, you can also configure port

 

 

trigger settings for this interface.

 

To use SNAT for a virtual interface that is in the same WAN trunk as the

 

physical interface to which the virtual interface is bound, the virtual

 

interface and physical interface must be in different subnets.

 

Otherwise, select a pre-defined address (group) to use as the source IP

 

address(es) of the packets that match this route.

 

Use Create new Object if you need to configure a new address (group)

 

to use as the source IP address(es) of the packets that match this route.

 

 

Port Triggering

Configure trigger port forwarding to allow computers on the LAN to

 

dynamically take turns using a service that uses a dedicated range of

 

ports on the client side and a dedicated range of ports on the server

 

side.

 

Note: You need to create a firewall rule to allow an incoming service

 

before using a port triggering rule.

 

 

Add

Click this to create a new entry. Select an entry and click Add to create

 

a new entry after the selected entry.

 

 

Edit

Select an entry and click this to be able to modify it. You can also just

 

double-click an entry to be able to modify it.

 

 

Remove

Select an entry and click this to delete it.

 

 

Move

The ordering of your rules is important as they are applied in order of

 

their numbering.

 

To move an entry to a different number in the list, click the Move icon.

 

In the field that appears, specify the number to which you want to move

 

the entry.

 

 

#

This is the rule index number.

 

 

Incoming

Select the service that the client computer sends to a remote server.

Service

The incoming service should have the same service or protocol type as

 

 

what you configured in the Service field.

 

 

Trigger

Select a service that a remote server sends. It causes (triggers) the

Service

ZyWALL to forward the traffic (received on the outgoing interface) to

 

the client computer that requested the service.

 

 

Bandwidth

This allows you to allocate bandwidth to a route and prioritize traffic that

Shaping

matches the routing policy.

 

You must also enable bandwidth management in the main policy route

 

screen (Network > Routing > Policy Route) in order to apply

 

bandwidth shaping.

290

 

ZyWALL USG 50 User’s Guide