Message Image

Skip main navigation (Press Enter).

SRX

last person joined: 4 days ago

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

Route vs Policy

Jump to Best Answer

Erdem02-23-2015 13:51

If I have policy that says to tunnel a give subnet and I also have a route statement that says the same ...

Erdem02-24-2015 03:05Best Answer

Hi, Your policy will never get hit if there is a route taking the traffic elswhere. The policy ...

Erdem02-24-2015 13:14

Thank, I was looking for that chart and could not find it.

1. Route vs Policy

0 Recommend
Erdem
Posted 02-23-2015 13:51

Reply Reply Privately
If I have policy that says to tunnel a give subnet and I also have a route statement that says the same subnet is reachable via X gateway, which one takes precedence?

Does the traffic get tunneled or routed first?
2. RE: Route vs Policy
Best Answer

0 Recommend
Erdem
Posted 02-24-2015 03:05

Reply Reply Privately
Hi,

Your policy will never get hit if there is a route taking the traffic elswhere. The policy has nothing to do with deciding where the traffic is routed to. Referencing the VPN in the policy is what pushed the traffic into the tunnel.

Have a look at the Junos Flow Based Processing below.

http://kb.juniper.net/InfoCenter/index?page=content&id=KB16110
3. RE: Route vs Policy

0 Recommend
Erdem
Posted 02-24-2015 13:14

Reply Reply Privately
Thank, I was looking for that chart and could not find it.

Powered by Higher Logic