|
| Chapter 12 Policy and Static Routes |
| Table 67 Network > Routing > Policy Route > Edit (continued) | |
| LABEL | DESCRIPTION |
| Type | Select Auto to have the ZyWALL use the routing table to find a |
|
| forward the matched packets automatically. |
|
| Select Gateway to route the matched packets to the |
|
| specified in the Gateway field. You have to set up the |
|
| a HOST address object first. |
|
| Select VPN Tunnel to route the matched packets via the specified VPN tunnel. |
|
| Select Trunk to route the matched packets through the interfaces in the trunk |
|
| group based on the load balancing algorithm. |
|
| Select Interface to route the matched packets through the specified outgoing |
|
| interface to a gateway (which is connected to the interface). |
|
|
|
| Gateway | This field displays when you select Gateway in the Type field. Select a HOST |
|
| address object. The gateway is an immediate neighbor of your ZyWALL that will |
|
| forward the packet to the destination. The gateway must be a router or switch on |
|
| the same segment as your ZyWALL's interface(s). |
|
|
|
| VPN Tunnel | This field displays when you select VPN Tunnel in the Type field. Select a VPN |
|
| tunnel through which the packets are sent to the remote network that is connected |
|
| to the ZyWALL directly. |
|
|
|
| Trunk | This field displays when you select Trunk in the Type field. Select a trunk group to |
|
| have the ZyWALL send the packets via the interfaces in the group. |
|
|
|
| Interface | This field displays when you select Interface in the Type field. Select an interface |
|
| to have the ZyWALL send traffic that matches the policy route through the |
|
| specified interface. |
|
|
|
| Address |
|
| Translation |
|
|
|
|
| Source Network | Select none to not use NAT for the route. |
| Address | Select |
| Translation | source IP address of the packets that matches this route. If you select outgoing- |
|
| interface, you can also configure port trigger settings for this interface. |
|
| Otherwise, select a |
|
| address(es) of the packets that match this route. |
|
| Select Create Object to configure a new address (group) to use as the source IP |
|
| address(es) of the packets that match this route. |
|
|
|
| Port Triggering |
|
|
|
|
| # | This is the rule index number. |
|
|
|
| Incoming Service | Select the service that the client computer sends to a remote server. |
|
| The incoming service should have the same service or protocol type as what you |
|
| configured in the Service field. |
|
|
|
| Trigger Service | Select a service that a remote server sends. It causes (triggers) the ZyWALL to |
|
| forward the traffic (received on the outgoing interface) to the client computer that |
|
| requested the service. |
|
|
|
| Add icon | Click the Add icon in the heading row to add a new first entry. |
|
| Click the Add icon in an entry to add a rule below the current entry. |
|
| Click the Remove icon to delete an existing rule from the ZyWALL. A window |
|
| displays asking you to confirm that you want to delete the rule. |
|
| In a numbered list, click the Move to N icon to display a field to type a number for |
|
| where you want to put that rule and press [ENTER] to move the rule to the number |
|
| that you typed. |
|
| The ordering of your rules is important as they are applied in order of their |
|
| numbering. |
|
|
|
| 231 |
ZyWALL USG 1000 User’s Guide | |
|
|