1. Home
    2. /
  2. Manuals
    3. /
  3. DrayTek
    4. /
  4. Vigor2860Vn-plus
    5. /
  5. 35
Page 171 / 794 Scroll up to view Page 166 - 170
Vigor2860 Series User’s Guide
157
Source IP
Any
– Any IP can be treated as the source IP.
Src IP Start -
Type the source IP start for the specified
WAN interface.
Src IP End -
Type the source IP end for the specified
WAN interface. If this field is blank, it means that all the
source IPs inside the LAN will be passed through the WAN
interface.
Destination IP
Any
– Any IP can be treated as the destination IP.
Dest IP Start-
Type the destination IP start for the
specified WAN interface.
Dest IP End -
Type the destination IP end for the specified
WAN interface. If this field is blank, it means that all the
destination IPs will be passed through the WAN interface.
Destination Port
Any
– Any
port number can be treated as the destination
port.
Dest Port Start -
Type the destination port start for the
destination IP.
Dest Port End -
Type the destination port end for the
destination IP. If this field is blank, it means that all the
destination ports will be passed through the WAN interface.
Send to if criteria
matched
Interface
– Use the drop down list to choose a WAN or
LAN interface or VPN profile. Packets match with the
above criteria will be transferred to the interface chosen
here.
Gateway IP
Specific gateway
is used only when you
want to forward the packets to the desired gateway.
Usually, Default Gateway is selected in default.
Priority
Packets will be transmitted based on all routes or Route
Policy. Vigor router will determine which rule will be
adopted for transmitting the packet according to the priority
of Static Route and Route Policy.
The greater the value is, the lower the priority is. Default
value for route policy is “200” which means it has higher
priority than the default route.
More options
Packet Forwarding to WAN via
– When you choose
WAN (e.g., WAN1) as the Interface for packet
transmission, you have to specify the way the packet
forwarded to. Choose
Force NAT
or
Force Routing
.
Failover to
– Check this button to lead the data passing
through specific interface (WAN/LAN/VPN/Route Policy)
automatically when the selected interface (defined in
Send
via if criteria matched
) is down.
WAN/LAN –
Use the drop down list to choose an
interface as an auto failover interface.
VPN –
Use the drop down list to choose a VPN tunnel
as a failover tunnel.
Route Policy –
Use the drop down list to choose an
existed route policy profile.
Page 172 / 794
Vigor2860 Series User’s Guide
158
Gateway IP
Specific gateway
is used only when you
want to forward the packets to the desired gateway.
Usually, Default Gateway is selected in default.
3.
When you finish the configuration, please click
OK
to save and exit this page.
How to Customize a Secure Route between VPN Router and Remote
Router by Using Route Policy
Note:
The web user interface will be revised later.
Example 1:
In the following figure, a LAN to LAN VPN tunnel is built between DrayTek VPN router (e.g.,
Vigor2860 series) and the remote router. Firewall Router can receive all of the traffic coming
from remote PC which wants to access into Internet; and send back the packets to Remote
Router through VPN Router.
1.
Establish a
VPN tunnel
between VPN Router and the Remote Router.
2.
Change to default route for the router located in Remote Router.
3.
Access into the web user interface of the router in VPN Router. Then, open
Load-Balance / Route Policy
and click
Advance Mode.
Page 173 / 794
Vigor2860 Series User’s Guide
159
4.
Click any
Index
number link
(e.g., 1 in this case). Configure the settings as follows.
Now, if you want such route policy will be applied by Vigor router with higher priority,
please adjust the value of
Priority
for such route policy. In general, default route is
specified with the lowest priority for it value is fixed as “250”. And Routes in Routing
Table are fixed as “150”. You can adjust the value for such route policy with lower value,
e.g., 100 to ensure it will be applied to packets transmission with the highest priority.
5.
After finished the above settings, click
OK
to save the configuration.
Page 174 / 794
Vigor2860 Series User’s Guide
160
6.
To route the packets coming from the Firewall Router back to the remote router, access
into the web user interface of the Firewall Router. Then, set “192.168.1.1/24” as the
gateway IP address and set “172.16.3.0/24” as the destination IP address.
Page 175 / 794
Vigor2860 Series User’s Guide
161
Example 2:
Below shows a scenario that local users behind Vigor router A want to access into a remote
service (e.g., YouTube) which is blocked or restricted by local Service Provider in area with
restrictions. A policy route can be created by the side of Router A to break through the Internet
censorship circumvention.
A VPN tunnel has been established between Router A and router B.
1.
Access into the web user interface of Router A.
2.
Open
Load-Balance/Route Policy
.
3.
Click any index number (e.g., #1 in this case).
4.
In the following web page, check
Enable
; type “192.168.1.10” as
Src IP Range
; type
“213.57.89.100” as the
Destination IP
for the remote VPN server; and choose VPN as
the
Interface
setting.

Rate

4.5 / 5 based on 2 votes.

Popular DrayTek Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top