08-17-2019 11:41 PM
08-18-2019 04:55 AM
entry PBR-LOCAL_1{
if match all {
source-address 10.0.0.0/8 ;
destination-address 172.16.0.0/12 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_2 {
if match all {
source-address 10.0.0.0/8 ;
destination-address 10.0.0.0/8 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_3 {
if match all {
source-address 10.0.0.0/8 ;
destination-address 192.168.0.0/16 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_4{
if match all {
source-address 192.168.0.0/16 ;
destination-address 172.16.0.0/12 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_5 {
if match all {
source-address 192.168.0.0/16 ;
destination-address 10.0.0.0/8 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_6 {
if match all {
source-address 192.168.0.0/16 ;
destination-address 192.168.0.0/16 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_7{
if match all {
source-address 172.16.0.0/12 ;
destination-address 172.16.0.0/12 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_8 {
if match all {
source-address 172.16.0.0/12 ;
destination-address 10.0.0.0/8 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-LOCAL_9 {
if match all {
source-address 172.16.0.0/12 ;
destination-address 192.168.0.0/16 ;
}
then {
permit ;
count pbr-local ;
}
}
entry PBR-FortiGate_1 {
if match all {
source-address 10.0.0.0/8 ;
}
then {
redirect-name FortiGate ;
count pbr-fortigate ;
}
}
entry PBR-FortiGate_2 {
if match all {
source-address 192.168.0.0/16 ;
}
then {
count pbr-fortigate ;
redirect-name FortiGate ;
}
}
entry PBR-FortiGate_3 {
if match all {
source-address 172.16.0.0/12 ;
}
then {
redirect-name FortiGate ;
count pbr-fortigate ;
}
}
create flow-redirect FortiGate
configure flow-redirect FortiGate add nexthop 172.16.1.3 priority 100