ZyXEL Communications XGS4700-48F 6.6How to Configure Routing Policy

Chapter 6 Tutorials

2Select Active and enter the guest VLAN ID (200 in this example) on ports 1, 2 and 3. The Switch puts unauthenticated clients in the specified guest VLAN.

Set Host-modeto Multi-Secureto have the Switch authenticate each client that connects to one of these ports, and specify the maximum number of clients that the Switch will authenticate on each of these port (5 in this example).

Click Apply.

3Click the Save link in the upper right corner of the web configurator to save your configuration permanently.

Clients that attach to port 1, 2 or 3 and fail to authenticate with the RADIUS server now should be in VLAN 200 and can access the Internet, but cannot communicate with devices in VLAN 1.

6.6How to Configure Routing Policy

The Switch checks the routing table and then forwards traffic through the default gateway (R1) based on the destination address. This example shows you how to configure policy route to send traffic that matches a layer-3 classifier to a different gateway (R2) for special treatment. The layer-3 classifier groups packets marked with DSCP value 58 into a flow. Packets marked with different DSCP values, such as 13 are forwarded to the default gateway. The Switch applies policy-based routing rules to incoming packets prior to the normal routing.