Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

tunables

Syntax

Hierarchy Level

[edit security advance-policy-based-routing]

Description

Configure the advanced policy-based (APBR) routing options to streamline the traffic handling.

You can streamline the traffic handling with APBR such as limiting the number of times a route can change for a session, terminating the session if there is a mismatch between zones when APBR is being applied in the middle of the session, and enabling logging to record events that occur on the device.

Fine-tuning the APBR configuration is required to avoid the possible issues such as excessive transitions due to route changes.

Options

drop-on-zone-mismatch

Terminate the session instead of instead of allowing traffic to traverse through the same route bypassing APBR.

enable-logging

Enable logging to record events that occur on the device for APBR-related operations.

max-route-change value

Configure the threshold for limiting the number of times a route can change for a session.

  • Range: 0-5

  • Default: 1

no-l3l4-app-lookup

Disable Layer 3 and Layer 4 custom application lookup in APBR. Starting in Junos OS Release 20.2R1, APBR supports Layer 3 and Layer 4 custom applications. You can manually disable Layer 3 and Layer 4 custom application lookup by including the no-l3l4-app-lookup option.

Required Privilege Level

services—To view this statement in the configuration.

services-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 15.1X49-D110.