Cisco Cisco Web Security Appliance S170 사용자 가이드
C O N F I G U R I N G T C P / I P T R A F F I C R O U T E S
C H A P T E R 2 1 : C O N F I G U R I N G N E T W O R K S E T T I N G S
469
C O N F I G U R I N G T C P / I P TR A F F I C R O U T E S
You can administer routes for data and management traffic, add static routes, load your IP
routing tables, and modify the default gateway using the Network > Routes page or the
routing tables, and modify the default gateway using the Network > Routes page or the
routeconfig
command.
The number of sections on this page is determined by how the “Restrict M1 port to appliance
management services only” check box is configured on the Network > Interfaces page:
management services only” check box is configured on the Network > Interfaces page:
• Separate route configuration sections for Management and Data traffic. When you use
the Management interface for management traffic only (“Restrict M1 port” is enabled),
then this page includes two sections to enter route table information, one for management
traffic and one for data traffic. AsyncOS uses the management route information for
management traffic only, and data route information for data traffic. Figure 21-3 on page
470 shows the Routes page when the option is enabled.
then this page includes two sections to enter route table information, one for management
traffic and one for data traffic. AsyncOS uses the management route information for
management traffic only, and data route information for data traffic. Figure 21-3 on page
470 shows the Routes page when the option is enabled.
• One route configuration section for all traffic (Management and Data). When you use
the Management interface for both management and data traffic (“Restrict M1 port” is
disabled), then this page includes one section to enter route table information for all traffic
that leaves the Web Security appliance, both management and data traffic.
disabled), then this page includes one section to enter route table information for all traffic
that leaves the Web Security appliance, both management and data traffic.
Note — A route gateway must reside on the same subnet as the Management or Data
interface on which it is configured.
interface on which it is configured.
Modifying the Default Route
You can modify the default gateway in the web interface or in the CLI using the
setgateway
CLI command.
Note — The Web Proxy sends out transactions on the data interface that is on the same
network as the default gateway configured for data traffic.
network as the default gateway configured for data traffic.
To modify the default gateway in the web interface:
1. Navigate to the Network > Routes page, and click on Default Route in the corresponding
table.
Figure 21-2 Editing the Default Route
2. In the Gateway column, enter the IP address of the computer system on the next hop of
the network connected to the network interface you are editing.
3. Submit and commit your changes.