Fortinet FortiGate Series Administration Manual page 353

Router Static
Example policy route
Type of Service
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903
http://docs.fortinet.com/ • Feedback
Outgoing Interface Select the name of the interface through which packets affected by the policy
will be routed.
Gateway Address Type the IP address of the next-hop router that the FortiGate unit can access
through the specified interface. A value of 0.0.0.0 is not valid.
Configure the following policy route to send all FTP traffic received at port1 out the port10
interface and to a next hop router at IP address 172.20.120.23. To route FTP traffic set
protocol to 6 (for TCP) and set both of the destination ports to 21, the FTP port.
Protocol
Incoming interface
Source address / mask
Destination address / mask 0.0.0.0/0.0.0.0
Destination Ports
Type of Service
Outgoing interface
Gateway Address
Figure 185: Example policy route to route all FTP traffic received at port1 to port10
Type of service (TOS) is an 8-bit field in the IP header that enables you to determine how
the IP datagram should be delivered, with such qualities as delay, priority, reliability, and
minimum cost.
Each quality helps gateways determine the best way to route datagrams. A router
maintains a ToS value for each route in its routing table.The lowest priority TOS is 0, the
highest is 7 - when bits 3, 4,and 5 are all set to 1. The router tries to match the TOS of the
datagram to the TOS on one of the possible routes to the destination. If there is no match,
the datagram is sent over a zero TOS route.
Using increased quality may increase the cost of delivery because better performance
may consume limited network resources. For more information, see RFC 791 and RFC
1349.
6
port1
0.0.0.0/0.0.0.0
From 21 to 21
bit pattern: 00 (hex) bit mask: 00 (hex)
port10
172.20.120.23
Policy Route
353