Policy-Based-Routing and IPROUTE2

PBR (Policy-Based Routing)

I wrote before when the router executes routing, only destination IP address is considered. But you might think not only the destination IP but also the source IP address are wished to be evaluated! If you like that, it can be realized in function of PBR (Policy Based Routing).

The PBR is set to the interface, search the packet incoming the interface in the access list for the PBR, you can change the destination by caught the access list.

So, not only the destination IP address and the source IP address, but you can also change the routing by TCP/UDP port number.

Sponsored Link


The functions of the router of the PBR, that can be realized by the terminal is IPROUTE2.IPROUTE2 is available as a Linux package.

Instead of the PBR of the access list, you can use the route-[IF-name] file and rule-[IF-name] file in directory /etc/sysconfig/network-scripts. In the previous example, you can cope with IPROUTE2 even if First Hop router is not.

IPROUTE2 does not seem to be provided on Windows.

To share

  • このエントリーをはてなブックマークに追加

To follow