Watchguard Policy Based Routing

There is another part of Multi-Wan which is only activated if you have a Fireware Pro license

With policy-based routing, you can make sure that all traffic for a policy always goes out through the same external interface, even if your multi-WAN configuration is set to send traffic in a round-robin configuration. For example, if you want email to be routed through a particular interface, you can use policy-based routing in the SMTP or POP3 proxy definition.

Restrictions on Policy-Based Routing

  • Policy-based routing is available only if multi-WAN is enabled. If you enable multi-WAN, the Edit Policy Properties dialog box automatically includes fields to configure policy-based routing.
  • By default, policy-based routing is not enabled.
  • Policy-based routing does not apply to IPSec traffic, or to traffic destined for the trusted or optional network (incoming traffic).

Add Policy-Based Routing to a Policy

  • Select a policy and click . Or, double-click a policy. The Edit Policy Properties dialog box appears.

  • Select the Use policy-based routing check box.
  • To specify the interface to send outbound traffic that matches the policy, select the interface name from the adjacent drop-down list. Make sure that the interface you select is a member of the alias or network that you set in the To field of your policy.
  • (Optional) Configure policy-based routing with multi-WAN failover as described below. If you do not select Failover and the interface you set for this policy is becomes inactive, traffic is dropped until the interface becomes available again. Click OK.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.