IPv4/IPv6 static route tabs

These tabs correspond to the list of static routes, the maximum number of which varies according to the model of the appliance:

SN160(W), SN210(W), SN310 SN-S-Series-220, SN-S-Series-320	SN510 SN710 SNi20 SNi40	SN910 SN-M-Series-520	SN-M-Series-720, SN-M-Series-920 SN1100 SN2000, SN2100 SN3000, SN3100 SN6000, SN6100 SNxr1200
512	2048	5120	10240

The IPv6 Static routes tab can only be accessed if IPv6 is enabled in the firewall’s configuration.

General configuration

Default gateway (router)

The default router is generally the equipment which allows your network to access the Internet. This is the address to which the firewall sends packets that need to go on the public network. Often the default router is connected to the Internet. If you do not configure the default router, the firewall will not be able to let through packets which have a different destination address from those directly linked to the Firewall. You will therefore be able to communicate between hosts on the internal, external or DMZ networks, but not with any other network (including the Internet).

To set the default router, select the object that represents it (Host or Router) from the drop-down menu. If this object does not exist, click on the object creation button to create it.
Once it has been selected, the hostname will appear on the screen. This option may be grayed out in several main gateways have been defined.

Static routes

Possible operations

Some operations can also be performed by right-clicking in the grid.

Search	Search that covers host, network and group objects.
Add	Adds a row to the grid. The route (sending of the command) is added once the new line is edited and the fields Destination network (host, network or group object) and Interface are entered.
Delete	Deletes one or several selected routes.

Once the changes have been made:

Apply	Sends the configuration of the static routes.
Cancel	Cancels the configuration of the static routes.

Static routes

Status	Specifies the status of the static routes. Double-click to enable or disable a route.
Destination network (host, network or group object)	Clicking in this column will open the objects database to select a host, network or group. If the object does not exist, click on the object creation button to create it. This field is mandatory.
Interface	The interface that makes it possible to reach the remote network can be selected from a drop-down list. This field is mandatory.
Address range	This column shows the IP address or group of addresses linked to the items in the column Destination network (host, network or group object).
Protected	This column indicates whether the route is protected. A protected route will be added to the object Network internals. The behavior of the security configuration will take this parameter into account. Hosts that can be contacted via this route will be remembered in the intrusion prevention engine.
Gateway	Clicking in this column will open the objects database to select a host or router object that is not involved in load balancing. If the desired object does not exist, click on the object creation button to create it. This field is optional. NOTE Load balancing is not compatible with static routes. If you select a router that participates in load balancing, a warning message will inform you that the route cannot be enabled.
Comments	Optional field to enter any text.