Page MenuHomeVyOS Platform

Need geoip option for policy route
Open, WishlistPublicFEATURE REQUEST

Description

now firewall support geoip ,that is cool ,but it is only for firewall , also need for policy route/local-route destination .
like this :
set policy route shunt rule 1 destination geoip country-code cn
set policy local-route rule 1 destination geoip country-code us

seems geoip will convert to lots of cidr address , that may make the config file too big to read/check. could add a feature like include config.d/ in linux ?

thanks!

Details

Difficulty level
Unknown (require assessment)
Version
-
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Unspecified (please specify)

Event Timeline

Viacheslav triaged this task as Wishlist priority.Jan 20 2024, 1:32 PM

with the fix n.fort put in this feature is greatly sort after, definitely a thump up from me.

Mostly impossible for policy local-route
I'm not expecting that it will be implemented at all.

set policy local-route doesn't make sense to me to have a geoip network group, however geoip in set policy route allows for greater flexibility while performing routing to ensure traffic traverse through specific destination for compliance and regulatory purposes.