Policy based route FW rules without quick match, just would not match

Started by funfuck1337, February 20, 2024, 02:34:07 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 20, 2024, 02:34:07 PM Last Edit: June 11, 2024, 05:15:08 PM by funfuck1337
I just set up dual WAN in my environment and tried to add gateway-specified rules without quick match.

PBR rules will never match if you have quick match unchecked.
Attached my rule setup:
dead img /

Everything works great if quick match is checked.

I have tried the same rule on every type of rule set (floating, interface group, interface).

I am wondering if it is my issue. Could anyone try or explain this symptom?
Or this is the limitation that quick match could not be disabled when gateway is specified in the rule.
February 20, 2024, 02:49:59 PM #1
First match is fine there as it is for most other rules you need...
Having loads of rules on several interfaces, also doing PBR, there is only one last match rule I created myself.
i am not an expert... just trying to help...
June 11, 2024, 05:14:41 PM #2
OK, finally i figure it out after a while.

Rule first match and last match really works like the name.

First match would just work like a normal rule. First-come-first-serve according to the rule order.

But with last match everything is inverted. I would match the non-quick rule after all first match rule.
And it would match the non-quick rule from the bottom to the top accordingly, instead of from top to bottom like quick match.

A lesson for me.
Print
Go Up Pages1
User actions