Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Ivory

PBR Question

Hello,

We have a Checkpoint Cluster named FW1 with a lot of interface and networks attached to it.

Now we are adding a new Checkpoint Cluster named FW@ for filtering web access. We plan to use pbr on FW1 to override the default route for some vlan like vlan1 and vlan 5 and to redirect the flow to our core network then to FW@.

In theory this can work but ... For communications between vlan1 and vlan2 or vlan1 and vlan3 we need to add a lot of route in the pbr table for each network .... 

Is it possible to be more simple like saying ... from vlan1 to rfc1918 use static route table, and from vlan1 to other networks use pbr routing table ? Like a cisco device would do ?

Thanks a lot

Olivier

PBR .jpg 

0 Kudos
0 Replies