Add routes for IPS engines or Layer 2 Firewalls

IPS engines and Layer 2 Firewalls do not route traffic. You can only add routes through interfaces that have IP addresses.

Capture Interfaces and Inline Interfaces on IPS engines and Layer 2 Firewalls do not have IP addresses. It is not possible to configure routing for these interfaces.

You might need to define a default route through a Normal Interface if Secure SD-WAN Manager components are not on a directly connected network. You might need to add other routes if one or more Secure SD-WAN Manager components are not directly connected and cannot be reached through the default gateway.

A Router element represents the next-hop gateway device that forwards packets to the networks you define.

Note: Virtual IPS engines and Virtual Layer 2 Firewalls do not communicate directly with other Secure SD-WAN Manager components. You cannot configure routing for Virtual IPS engines and Virtual Layer 2 Firewalls.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Right-click an IPS or Layer 2 Firewall element, then select Edit <element type>.
  2. In the navigation pane on the left, select Routing.
    The Routing pane opens.
  3. In the Routing Tools pane at the bottom of the Routing pane, click the Add Route tab.
  4. In the Destination field, enter an IP address. You can also double-click the field and select a destination device.
  5. In the Gateway field, enter an IP address. You can also double-click the field and select a gateway device.
  6. Click Add.
    The route is added to the configuration.
  7. Click Save to save and validate changes.