Alcatel-Lucent OmniSwitch 6850-48 Network Configuration Manual page 945

Configuring QoS
Note. If the routing table has a default route of 0.0.0.0, traffic matching a PBR policy will be redirected to
the route specified in the policy. For information about viewing the routing table, see
uring IP."
Policy Based Routing may be used to redirect untrusted traffic to a firewall. In this case, note that reply
packets will be not be allowed back through the firewall.
In this example, all traffic originating in the 10.3 network is routed through the firewall, regardless of
whether or not a route exists.
-> policy condition Traffic3 source ip 10.3.0.0 mask 255.255.0.0
-> policy action Firewall permanent gateway ip 173.5.1.254
-> policy rule Redirect_All condition Traffic3 action Firewall
Note that the functionality of the firewall is important. In the example, the firewall is sending the traffic to
be routed remotely. If you instead set up a firewall to send the traffic back to the switch to be routed, you
should set up the policy condition with a built-in source port group so that traffic coming back from the
firewall will not get looped and sent back out to the firewall.
OmniSwitch AOS Release 6 Network Configuration Guide
10.3.0.0
OmniSwitch
Routing all IP source traffic through a firewall
173.10.2.0
Firewall
173.5.1.0
September 2009
Policy Applications
Chapter 24, "Config-
174.26.1.0
173.5.1.254
page 40-63