Vyatta Network OS Documentation

Learn how to install, configure and operate the Vyatta NOS, which helps drive our virtual networking & physical platforms portfolio.

policy route pbr <name> rule <rule-number> tcp flags <tcp-flag>

Defines the types of TCP flags to be matched for a routing policy rule.

set policy route pbr name rule rule-number tcp flags flags
delete policy route pbr name rule rule-number tcp flags [ flags ]
show policy route pbr name rule rule-number tcp flags
name
The name of an IP routing policy.
rule-number
The numeric identifier of the rule. Rule numbers determine the order in which rules are executed. Each rule must have a unique rule number. The numbers range from 1 through 9999.

You can define multiple rules by creating more than one rule configuration node.

tcp-flags
The flags to be matched in a packet. The flags are any of SYN, ACK, FIN, RST, URG, and PSH. You can specify more than one flag in a list separated by commas.

Prefixing a flag name with the negation operator matches packets with that flag unset. You can also use ! to match packets by not using a given TCP flag. For example, the list SYN, !ACK, !FIN, !RST matches only packets with the SYN flag set and the ACK, FIN, and RST flags unset.

Configuration mode


policy {
    route {
        pbr name {
              rule rule-number {
                    tcp {
                       flags tcp-flags
                    }
                }
            }
        }
    }

You must specify the address-family, action, and table leaf nodes to configure a routing policy. It is recommended to use the delete policy route pbr name rule number command to delete a routing policy.

Use the set form of this command to define the types of TCP flags to be matched for a routing policy rule.

Use the delete form of this command to remove the types of TCP flags to be matched for a routing policy rule.

Use the show form of this command to view the types of TCP flags to be matched for a routing policy rule.