以acl 3000匹配源IP做策略路由(以流策略方式)财务固定外网选路
例:
ACL 3000
rule 0 permit ip source 172.16.100.2 0 destination 192.168.251.2 0 //记得添加一条让需要重定向的源,可以优先去访问内网,否则该源所有流量到了网关都会被直接重定向到外网,就访问不了内网了。
acl 3001
rule 1 permit ip source 172.16.100.2 0
[Huawei]traffic classifier c9
[Huawei-classifier-c9]if-match acl 3000
[Huawei]traffic classifier c10
[Huawei-classifier-c10]if-match acl 3001
[Huawei]traffic behavior b9
[Huawei-behavior-b9]permit
[Huawei]traffic behavior b10
[Huawei-behavior-b10]redirect ip-nexthop 192.168.11.1
[Huawei]traffic policy p10 match-extended
[Huawei-trafficpolicy-p10]
classifier c9 behavior b9 precedence 10
classifier c10 behavior b10 precedence 20
[Huawei]int g0/0/4
[Huawei-GigabitEthernet0/0/4]traffic-policy p10 inbound