Router Settings
As part of a network policy that applies to multiple devices, you can configure the
following router settings:
- Network
Allocation
- You can add or import subnetwork allocations, and allocate VLANs to
subnetwork spaces defining management, internal, and guest networks. When
ExtremeCloud IQ uploads the network policy to routers with these VLANs
assigned to their Ethernet ports, it also assigns the subnetwork space to
those ports.
- Router
Templates
- A router template is a diagram of the physical ports for a specific Extreme Networks router model. Use the template to assign
port types to the device ports, which defines the function of the
ports.
- VPN
Service
- Layer 3 IPsec VPN tunnels securely send traffic between Extreme Networks
routers and one or two Extreme Networks VGVAs (VPN Gateway Virtual
Appliances). ExtremeCloud IQ applies Layer 3 IPsec VPNs to
routers and Layer 3 VPN gateways through a network policy that supports
routing.
- SD-WAN
- Enable SD-WAN to configure policies that make routing decisions based on
Layer 7 application service sets, user profiles, incoming LAN interfaces, or
source and destination addresses. An SD-WAN route group is a list of
prioritized WAN ports that you can use as a forwarding action in a routing
policy.
- Routing
Policy
- Use policy-based routing to assign route priorities to traffic based on
various factors, including Layer 7 application service sets, user profiles,
incoming LAN interfaces, and source and destination addresses. There are
three general configurations for policy-based routing: split tunnel, tunnel
all, and custom. When routing is enabled in the network policy and SD-WAN is
disabled, you can use any of these routing policy types. When both routing
and SD-WAN are enabled, you can only define custom routing rules.
- URL
Filtering
- Some routers support HTTP URL filtering rules, which define URL filtering by
allowed list, blocked list, and category, and can be assigned to one or more
user profiles.
- Firewall
- A network firewall policy is a set of up to 2048 rules that a router uses to
permit or deny traffic to and from the networks it controls. For more
information, see Configure a Firewall Policy.
- Dynamic
DNS
- The DNS translates human-friendly domain names into IP addresses. You can
supply external DNS server IP addresses or use Extreme Networks routers to provide proxy DNS services for every local network under their
control.
- WAN
Tracking
- Configure one or two WAN tracking destination IP addresses in a network
policy so that routers can send probe packets to the destination IPs to
check WAN availability.
