In the NAT rules, the Outbound Rules and in the Rules (advanced), there are 2 specific fields:
- Set Local Tag
- Match Local Tag
I searched the docs and found almost nothing about this.
The only thing I found is:
Set local tag - Set a tag that other NAT rules and filters can check for.
Match local tag - Check for a tag set by another rule.
I read the ebook, and it's not in it.
Can anyone give me a (real life?) example of how to use these fields?
I have a rule that contains IPs, Aliases, etc. for internal machines that I do not want to have specific internet access when a VPN tunnel goes down.
I tag those as "BLOCKINET" and then in my WAN OUTBOUND Rules I have a match set for BLOCKINET and anything with that tag set and matches, I set it to 'block' so they cannot route out the WAN interface if the VPN tunnel goes down.