This section uses the following conventions:
<sequence> or <seq> is the sequence number of the rule. Possible values: 1 to 65535.<name> is the name. A string 1 to 50 characters long.routingGo to routing filters configuration submenu.
routing> access-list <name>Create or edit access list <name>.
Example:
ngfw> routing> access-list TEST
routing> access-list=['name']> rule <sequence>Create or edit a rule with the specified number in the access list.
Example:
ngfw> routing> access-list=['TEST']> rule 100
routing> access-list=['name']> rule=['seq']> network <A.B.C.D/M>Set network address for rule.
Example:
ngfw> routing> access-list=['TEST']> rule=['100']> network 192.168.100.2/24
routing> access-list=['name']> rule=['seq']> action (PERMIT|DENY)Set rule action.
Example:
ngfw> routing> access-list=['TEST']> rule=['100']> action PERMIT
routing> prefix-list <name>Create or edit prefix list <name>.
Example:
ngfw> routing> prefix-list TEST
routing> prefix-list=['name']> rule <sequence>Create or edit a rule with the specified number in the prefix list.
Example:
ngfw> routing> prefix-list=['TEST']> rule 100
routing> prefix-list=['name']> rule=['seq']> network <A.B.C.D/M>Set prefix for rule.
Example:
ngfw> routing> prefix-list=['TEST']> rule=['100']> network 192.168.100.2/24
routing> prefix-list=['name']> rule=['seq']> action (PERMIT|DENY)Set rule action.
Example:
ngfw> routing> prefix-list=['TEST']> rule=['100']> action PERMIT
routing> prefix-list=['name']> rule=['seq']> le <number>Set lower bound for the rule prefix. Possible values: 1 to 32.
Example:
ngfw> routing> prefix-list=['TEST']> rule=['100']> le 24
routing> prefix-list=['name']> rule=['seq']> ge <number>Set upper bound for the rule prefix. Possible values: 1 to 32.
Example:
ngfw> routing> prefix-list=['TEST']> rule=['100']> ge 25
routing> route-map <name>Create or edit route map <name>.
Example:
ngfw> routing> route-map TEST
routing> route-map=['name']> rule <sequence>Create or edit a rule with the specified number in the route map.
Example:
ngfw> routing> route-map=['TEST']> rule 100
routing> route-map=['name']> rule=['seq']> action (PERMIT|DENY)Set rule action.
Example:
ngfw> routing> route-map=['TEST']> rule=['100']> action PERMIT
routing> route-map=['name']> rule=['seq']> match-type (none|PREFIXLIST)Set match type for rule:
none to not use a matchPREFIXLIST to use a previously declared prefix listExample:
ngfw> routing> route-map=['TEST']> rule=['100']> match-type PREFIXLIST
routing> route-map=['name']> rule=['seq']> match-value <value>Set match value for rule. Only prefix lists are supported.
Example:
ngfw> routing> route-map=['TEST']> rule=['100']> match-value TEST
routing> route-map=['name']> rule=['seq']> set-type (none|METRIC|ASPATHPREPEND|NEXTHOP|LOCALPREFERENCE)Set change type for rule:
none to not change the metricMETRIC to change the MED metric for the routeASPATHPREPEND to add the as-number specified in set-value to the AS_PATH listNEXTHOP to change the next-hop parameter for the routeLOCALPREFERENCE to change the local-preference parameter for the route. Works within an AS.Example:
ngfw> routing> route-map=['TEST']> rule=['100']> set-type METRIC
routing> route-map=['name']> rule=['seq']> set-value <value>Set the change value for the rule.
Example:
ngfw> routing> route-map=['TEST']> rule=['100']> set-value 100
no routing access-list <name>Delete access list <name>.
no routing prefix-list <name>Delete prefix list <name>.
no routing route-map <name>Delete route map <name>.
show routing access-listsShow all available access lists.
Example:
ngfw> show routing access-lists
{
"ngfw-routing-filters:routingFilters": {
"access-list": [
{
"name": "TEST",
"rules": [
{
"sequence": 100,
"network": "192.168.100.0/24",
"action": "PERMIT"
}
]
}
]
}
}
show routing prefix-listsShow all available prefix lists.
Example:
ngfw> show routing prefix-lists
{
"ngfw-routing-filters:routingFilters": {
"prefix-list": [
{
"name": "TEST",
"rules": [
{
"sequence": 100,
"network": "192.168.100.0/24",
"action": "PERMIT",
"ge": 24,
"le": 32
}
]
}
]
}
}
show routing route-mapsShow all available route maps.
Example:
ngfw> show routing route-maps
{
"ngfw-routing-filters:routingFilters": {
"route-map": [
{
"name": "TEST",
"rules": [
{
"sequence": 100,
"action": "PERMIT",
"set": {
"type": "metric",
"value": "100"
},
"match": {
"type": "prefix-list",
"value": "TEST"
}
}
]
}
]
}
}
show routing access-list <name>Show access list <name>.
Example:
ngfw> show routing access-list TEST
{
"ngfw-routing-filters:routingFilters": {
"access-list": [
{
"name": "TEST",
"rules": [
{
"sequence": 100,
"network": "192.168.100.0/24",
"action": "PERMIT"
}
]
}
]
}
}
show routing prefix-list <name>Show prefix list <name>.
Example:
ngfw> show routing prefix-list TEST
{
"ngfw-routing-filters:routingFilters": {
"prefix-list": [
{
"name": "TEST",
"rules": [
{
"sequence": 100,
"network": "192.168.100.0/24",
"action": "PERMIT",
"ge": 24,
"le": 32
}
]
}
]
}
}
show routing route-map <name>Show route map <name>.
Example:
ngfw> show routing route-map TEST
{
"ngfw-routing-filters:routingFilters": {
"route-map": [
{
"name": "TEST",
"rules": [
{
"sequence": 100,
"action": "PERMIT",
"set": {
"type": "metric",
"value": "100"
},
"match": {
"type": "prefix-list",
"value": "TEST"
}
}
]
}
]
}
}