vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #378 from sever-sever/PBR

Browse Source 
pbr: Policy local-route
This commit is contained in:
Christian Poessinger 2020-11-22 13:29:49 +01:00 committed by GitHub
commit 55b77175b4
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 31 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
docs/routing/pbr.rst
View File

@ -104,3 +104,34 @@ from PBR
These commands allow the VLAN10 and VLAN20 hosts to communicate with
each other using the main routing table.
Local route
===========
The following example allows VyOS to use :abbr:`PBR (Policy-Based Routing)` for traffic, which originated from the router itself.
That solution for multiple ISP's and VyOS router will respond from the same interface that the packet was received.
Also, it used, if we want that one VPN tunnel to be through one provider, and the second through another.
* ``192.168.1.254`` IP addreess on VyOS eth1 from ISP1
* ``192.168.2.254`` IP addreess on VyOS eth2 from ISP2
* ``table 10`` Routing table used for ISP1
* ``table 11`` Routing table used for ISP2
.. code-block:: none
set policy local-route rule 101 set table '10'
set policy local-route rule 101 source '192.0.1.254'
set policy local-route rule 102 set table '11'
set policy local-route rule 102 source '192.0.2.254'
set protocols static table 10 route '0.0.0.0/0' next-hop '192.0.1.1'
set protocols static table 11 route '0.0.0.0/0' next-hop '192.0.2.2'
Add multiple source IP in one rule with same priority
.. code-block:: none
set policy local-route rule 101 set table '10'
set policy local-route rule 101 source '192.0.1.254'
set policy local-route rule 101 source '192.0.1.253'
set policy local-route rule 101 source '203.0.113.0/24'