No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

CLI-based Configuration Guide - IP Unicast Routing

AR100, AR120, AR150, AR160, AR200, AR1200, AR2200, AR3200, and AR3600 V200R009

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring Matching rules of Local PBR

Configuring Matching rules of Local PBR

Context

By defining a matching rule of the local PBR, you can determine the type of packets to which PBR is applied.

Before configuring an ACL of IP packets, create an ACL.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run policy-based-route policy-name { deny | permit } node node-id

    A policy and a PBR node are created. If a PBR node exists, the local PBR view is displayed.

    By default, no policy or PBR node is created for the local PBR.

    NOTE:
    • The permit parameter indicates that PBR is enabled for matched packets. The deny indicates that PBR is disabled for matched packets.

    • To create multiple PBR nodes for the local PBR, run this command multiple times. The node-id parameter specifies the sequence number of a PBR node. A smaller number indicates a higher priority of the corresponding PBR node.

  3. Run either of the following commands or both the commands to configure matching rules of IP packets as required.

    • Run if-match acl acl-number

      An ACL is configured to match IP packets.

      By default, no matching rule of IP addresses is configured in the local PBR.

      NOTE:
      • When permit is used in the ACL rule, the system executes the behavior specified in the local PBR for the packets matching the ACL rule. When the behavior is permit, the system enforces the policy on the packets matching the rule. When the behavior is deny, the system searches routes for the packets according to the destination addresses.

      • If packets match no ACL rule, the system searches routes for the packets according to the destination addresses.

      • When deny is used in the ACL rule or the ACL does not contain rules, the local PBR referencing the ACL does not take effect, and the system searches routes for the packets according to the destination addresses.

    • Run if-match packet-length min-length max-length

      A matching rule of IP packet length is configured to match packets.

      By default, no matching rule of IP packet length is configured in the local PBR.

Translation
Download
Updated: 2019-05-17

Document ID: EDOC1000174069

Views: 142770

Downloads: 280

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next