home

Supported platforms

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

policy route pbr <name> rule <rule-number> source address <address>

Defines the source address for a routing policy rule.

set policy route pbr name rule rule-number source address address
delete policy route pbr name rule rule-number source address [ addresss ]
show policy route pbr name rule rule-number source
name
The name of an IP routing policy.
rule-number
The numeric identifier of a policy rule. Rule numbers determine the order in which rules are processed. Each rule must have a unique rule number. The number ranges from 1 through 9999.

You can define multiple rules by creating more than one rule configuration node.

source
Specifies matching based on a source address.
address
Specifies an address to match. Address formats are as follows:

address-group name: An address group that is configured with a list of addresses.

ip-address: An IPv4 address.

ip-address/prefix: An IPv4 network address, where 0.0.0.0/0 matches any network.

!ip-address: All IP addresses except the specified IPv4 address.

!ip-address/prefix: All IP addresses except the specified IPv4 network address.

ipv6-address: An IPv6 address; for example, fe80::20c:29fe:fe47:f89.

ip-address/prefix: An IPv6 network address, where ::/0 matches any network; for example, fe80::20c:29fe:fe47:f88/64.

!ipv6-address: All IP addresses except the specified IPv6 address.

!ip-address/prefix: All IP addresses except the specified IPv6 network address.

Configuration mode


policy { 
    route {
        pbr name {
                rule rule-number {
                    source {
                        address address
                        
                    }
                }
            }
        }
    }

This match criterion specifies a port or a group of ports for packet source address for a routing policy rule.

A packet is considered a match for an address, a network, or a port group if it matches any host IP address, network address, or port name or number, respectively, in the group. However, if more than one group is specified, the packet must be a match for both groups to be considered a match. For example, if both an address group and a port group are specified, the source of the packet must match at least one item in the address group and at least one item in the port group.

An address group may be specified with a port group.

If both an address and a port are specified, the packet is considered a match only if both the address and the port match.

Use the set form of this command to define the source for a routing policy rule.

Use the delete form of this command to remove the source for a routing policy rule.

Use the show form of this command to view the source for a routing policy rule.