About Router Settings

As part of a network policy that applies to multiple devices, you can configure the following router settings:

• Network Allocation - You can add or import subnetwork allocations, and allocate VLANs to subnetwork spaces defining management, internal, and guest networks. When ExtremeCloud IQ uploads the network policy to routers with these VLANs assigned to their Ethernet ports, it also assigns the subnetwork space to those ports.
• Router Templates - A router template is a diagram of the physical ports for a specific Extreme Networks router model and allows you to assign port types to the device ports, which defines how the ports assigned to it will function.
• VPN Service - Layer 3 IPsec VPN tunnels securely send traffic between Extreme Networks routers and one or two Extreme Networks VGVAs (VPN Gateway Virtual Appliances). ExtremeCloud IQ applies Layer 3 IPsec VPNs to routers and Layer 3 VPN gateways through a network policy that supports routing.
• SD-WAN - Enable SD-WAN to configure policies that make routing decisions based on Layer 7 application service sets, user profiles, incoming LAN interfaces, or source and destination addresses. An SD-WAN route group is a list of prioritized WAN ports that you can use as a forwarding action in a routing policy.
• Routing Policy - Policy-based routing enables you to assign route priorities to traffic based on various factors, including Layer 7 application service sets, user profiles, incoming LAN interfaces, and source and destination addresses. There are three general configurations for policy-based routing: split tunnel, tunnel all, and custom. When routing is enabled in the network policy and SD-WAN is disabled, you can use any of these routing policy types. When both routing and SD-WAN are enabled, you can only define custom routing rules.
• URL Filtering - Some routers support HTTP URL filtering rules, which define URL filtering by whitelist, blacklist, and category, and can be assigned to one or more user profiles.
• Firewall - A network firewall policy is a set of up to 2048 rules that a router uses to permit or deny traffic to and from the networks it controls. For more information, see Configure a Router Firewall Policy.
• Dynamic DNS - The DNS translates human-friendly domain names into IP addresses. You can supply external DNS server IP addresses or use Extreme Networks routers to provide proxy DNS services for every local network under their control.
• WAN Tracking - You can configure one or two WAN tracking destination IP addresses in a network policy so that routers can send probe packets to the destination IPs to check WAN availability.