source-zone (PBR rule view)

Function

The source-zone command sets the source security zone as a matching condition of a PBR rule.

The undo source-zone command deletes the configuration.

Format

source-zone zone-name &<1-6>

undo source-zone { zone-name &<1-6> | all }

Parameters

Parameter Description Value
zone-name

Specifies the source security zone of packets.

The value must be the name of an existing security zone.
all

Deletes all configurations of the source security zone.

-

Views

PBR rule view

Default Level

2: Configuration level

Usage Guidelines

Matching conditions are used to identify traffic and traffic that matches conditions is routed independently from other traffic. When the source security zone is set as a matching condition, the device implements PBR on packets from the specified security zone. You cannot specify both the security zone and the incoming interface as matching conditions.

Example

# Set source zone DMZ as matching condition of PBR rule abc.

<sysname> system-view
[sysname] policy-based-route
[sysname-policy-pbr] rule name abc
[sysname-policy-pbr-rule-abc] source-zone DMZ
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.