Chapter 8 Route

 

 

Table 44 Command Summary: Policy Route (continued)

COMMAND

DESCRIPTION

[no] source {address6_objectany}

Sets the source IPv6 IP address that the matched packets must have.

 

The no command resets the source IP address to the default (any). any

 

means all IP addresses.

[no] user user_name

Sets the user name. The no command resets the user name to the

 

default (any). any means all users.

[no] policy controll-ipsec-dynamic-rules

Enables the ZyWALL to use policy routes to manually specify the

activate

destination addresses of dynamic IPSec rules. You must manually

 

create these policy routes. The ZyWALL automatically obtains source

 

and destination addresses for dynamic IPSec rules that do not match

 

any of the policy routes.

 

The no command has the ZyWALL automatically obtain source and

 

destination addresses for all dynamic IPSec rules.

 

 

policy default-route

Enters the policy-route sub-command mode to set a route with the

 

name “default-route”.

policy delete policy_number

Removes a routing policy.

policy flush

Clears the policy routing table.

policy list table

Displays all policy route settings.

policy move policy_number to policy_number

Moves a routing policy to the number that you specified.

[no] policy override-direct-route activate

Has the ZyWALL forward packets that match a policy route according

 

to the policy route instead of sending the packets to a directly

 

connected network. Use the no command to disable it.

[no] policy controll-virtual-server-rules

Gives policy routes priority over NAT virtual server rules (1-1 SNAT).

activate

Use the no command to give NAT virtual server rules priority over

 

policy routes.

 

 

[no] policy6 override-direct-route

Has the ZyWALL forward IPv6 packets that match a policy route

activate

according to the policy route instead of sending the packets to a

 

directly connected network. Use the no command to disable it.

show bwm activation

Displays whether or not the global setting for bandwidth management

 

on the ZyWALL is enabled.

 

 

show bwm-usage < [policy-route

Displays the specified policy route or interface’s bandwidth allotment,

policy_number] [interface

current bandwidth usage, and bandwidth usage statistics.

interface_name]

 

show policy-route [policy_number]

Displays all or specified policy route settings.

show policy-route begin <1..200> end

Displays the specified range of policy route settings.

<1..200>

 

show policy-route controll-ipsec-dynamic-

Displays whether the ZyWALL checks policy routes first before IPSec

rules

dynamic rules.

show policy-route override-direct-route

Displays whether or not the ZyWALL forwards packets that match a

 

policy route according to the policy route instead of sending the

 

packets to a directly connected network.

 

 

show policy-route controll-virtual-server-

Displays whether or not policy routes have priority over NAT virtual

rules

server rules (1-1 SNAT).

show policy-route6 override-direct-route

Displays whether or not the ZyWALL forwards IPv6 packets that match

 

a policy route according to the policy route instead of sending the

 

packets to a directly connected network.

 

 

show policy-route rule_count

Displays the number of policy routes that have been configured on the

 

ZyWALL.

 

 

show policy-route underlayer-rules

Displays all policy route rule details for advanced debugging.

 

103

ZyWALL (ZLD) CLI Reference Guide