ZyXEL Communications UAG Series User Manual page 101

Table 47 Command Summary: Policy Route (continued)
COMMAND
exit
[no] interface interface_name
[no] next-hop {auto|gateway address
object |interface interface_name
|trunk trunk_name|tunnel tunnel_name}
[no] schedule schedule_object
[no] service {service_name|any}
[no] snat {outgoing-interface|pool
{address_object}}
[no] source {address_object|any}
[no] sslvpn tunnel_name
[no] trigger <1..8> incoming
service_name trigger service_name
trigger append incoming service_name
trigger service_name
trigger delete <1..8>
trigger insert <1..8> incoming
service_name trigger service_name
trigger move <1..8> to <1..8>
[no] tunnel tunnel_name
[no] user user_name
[no] policy controll-ipsec-dynamic-rules
activate
policy default-route
policy delete policy_number
policy flush
policy list table
policy move policy_number to policy_number
[no] policy override-direct-route activate
UAG CLI Reference Guide
DESCRIPTION
Leaves the sub-command mode.
Sets the interface on which the incoming packets are received. The no
command resets the incoming interface to the default (
means all interfaces.
Sets the next-hop to which the matched packets are routed. The no
command resets next-hop settings to the default (
Sets the schedule. The
no
the default ( ).
none none
Sets the IP protocol. The
no
default ( ). means all services.
any any
Sets the source IP address of the matched packets that use SNAT. The
command removes source NAT settings from the rule.
no
Sets the source IP address that the matched packets must have. The
command resets the source IP address to the default (
no
means all IP addresses.
Sets the incoming interface to an SSL VPN tunnel. The
removes the SSL VPN tunnel through which the incoming packets are
received.
Sets a port triggering rule. The
settings from the rule.
Adds a new port triggering rule to the end of the list.
Removes a port triggering rule.
Adds a new port triggering rule before the specified number.
Moves a port triggering rule to the number that you specified.
Sets the incoming interface to an IPSec VPN tunnel. The
removes the IPSec VPN tunnel through which the incoming packets are
received.
Sets the user name. The no command resets the user name to the
default (any). any means all users.
Enables the UAG to use policy routes to manually specify the
destination addresses of dynamic IPSec rules. You must manually
create these policy routes. The UAG automatically obtains source and
destination addresses for dynamic IPSec rules that do not match any
of the policy routes.
The no command has the UAG automatically obtain source and
destination addresses for all dynamic IPSec rules.
Enters the policy-route sub-command mode to set a route with the
name "default-route".
Removes a routing policy.
Clears the policy routing table.
Displays all policy route settings.
Moves a routing policy to the number that you specified.
Has the UAG forward packets that match a policy route according to
the policy route instead of sending the packets to a directly connected
network. Use the no command to disable it.
Chapter 11 Route
auto
command removes the schedule setting to
means any time.
command resets service settings to the
command removes port trigger
no
).
any any
).
).
any any
command
no
command
no
101