Trying to enforce PBR similar to this. Though I have noticed a command like protocols static table 11 route 0.0.0.0/0 dhcp-interface 'eth2' will not enforce the policies and instead route out of my main route on eth0. My workaround has been set protocols static table 11 route 0.0.0.0/0 interface 'eth2' though I assume if my WAN DHCP renews this connection will break... Is this expected operation?
Relevant config snippets
$ show configuration commands | grep protocol set protocols static table 10 route 0.0.0.0/0 dhcp-interface 'eth0' set protocols static table 11 route 0.0.0.0/0 interface eth2
$ show configuration commands | grep policy set interfaces ethernet eth1 policy route 'HTTP-ALT' set interfaces ethernet eth1 vif 10 policy route 'HTTP-ALT' set interfaces ethernet eth1 vif 100 policy route 'HTTP-ALT' set policy route HTTP-ALT rule 9 destination address '192.168.3.0/24' set policy route HTTP-ALT rule 9 set table 'main' set policy route HTTP-ALT rule 10 set table '11' set policy route HTTP-ALT rule 10 source address '192.168.4.45/32'
$ show configuration commands | grep nat set nat source rule 9 outbound-interface 'eth2' set nat source rule 9 source address '192.168.4.45/32' set nat source rule 9 translation address 'masquerade' set nat source rule 10 outbound-interface 'eth0' set nat source rule 10 source address '192.168.4.0/24' set nat source rule 10 translation address 'masquerade'
My expected outcome is to have 192.168.4.45/32 fully utilize eth2 and not my default WAN interface eth0
With protocols static table 11 route 0.0.0.0/0 dhcp-interface 'eth2' that is not possible