From 8c07fdd896bf74b923b2abc7b6d3d84b4afdf740 Mon Sep 17 00:00:00 2001 From: goodNETnick Date: Tue, 12 Oct 2021 22:19:32 +1000 Subject: Correction of exclude Inter-VLAN traffic section --- docs/configuration/policy/examples.rst | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) (limited to 'docs/configuration') diff --git a/docs/configuration/policy/examples.rst b/docs/configuration/policy/examples.rst index a1d40db4..e99bdfcf 100644 --- a/docs/configuration/policy/examples.rst +++ b/docs/configuration/policy/examples.rst @@ -138,12 +138,15 @@ from PBR .. code-block:: none + set firewall group network-group VLANS-GR description 'VLANs networks' + set firewall group network-group VLANS-GR network '192.168.188.0/24' + set firewall group network-group VLANS-GR network '192.168.189.0/24' + set policy route PBR rule 10 description 'VLAN10 <-> VLAN11 shortcut' - set policy route PBR rule 10 destination address '192.168.188.0/24' - set policy route PBR rule 10 destination address '192.168.189.0/24' + set policy route PBR rule 10 destination group network-group 'VLANS-GR' set policy route PBR rule 10 set table 'main' -These commands allow the VLAN10 and VLAN20 hosts to communicate with +These commands allow the VLAN10 and VLAN11 hosts to communicate with each other using the main routing table. Local route -- cgit v1.2.3