Configuring load-balancing equivalent routes for USG firewalls

107

The load-balancing equivalent routes for USG firewalls are configured as follows:
Configure load balancing of equivalent routes on the web UI as follows:
1. Choose Route > Static > Equivalent Route.
Configure the source IP address, destination IP address, source port, and destination port for the load-balancing equipment route.
2. Calculate a value based on the source IP address, destination IP address, and port number. Packets with the same value are forwarded over the same link.
3. Click Apply.

Configure load balancing of equivalent routes in CLI mode as follows:
1. Configure the per-flow load balancing.
a. Run the system-view command to enter the system view.
b. Run the load-balance flow hash { destination-ip | destination-port | source-ip | source-port } * command to configure the link according to the Hash algorithm.
c. Run the interface interface-type interface-number command to enter the interface view.
d. Run the route weight weight-value command to configure the load-balancing weight. The larger the load-balancing weight of the interface, the large the traffic borne by the interface. The default value is 1.
e. Run the quit command to return to the system view.

2. Configure the per-packet load balancing (Note: Generally, this mode is not used by firewalls).
a. Run the system-view command to enter the system view.
b. Run the load-balance packet command to configure per-packet load balancing to forward IP packets.
c. Run the interface interface-type interface-number command to enter the interface view.
d. Run the route weight weight-value command to configure the load-balancing weight. The larger the load-balancing weight of the interface, the large the traffic borne by the interface. The default value is 1.
e. Run the quit command to return to the system view.

Other related questions:
Load balancing
The functions and meanings of load balancing are described as follows: When multiple routes have the same routing protocol preference and metric, these routes are called equal-cost routes, among which load balancing can be implemented. Routers support the multi-route mode, allowing you to configure multiple routes with the same destination and preference. If the destinations and costs of multiple routes discovered by the same routing protocol are the same, load balancing can be performed among the routes. Run the maximum load-balancing number command in the views of various protocols to implement load balancing. Load balancing falls into the following two modes: -Packet-by-packet When the packet-by-packet load balancing is configured, firewalls at the network layer forward packets to the same destination through various equal-cost paths. That is, switches always choose the next hop address that is different from the last one to send packets. -Session-by-session When session-by-session load balancing is configured, firewalls forward packets according to the source address, destination address, source port, destination port, and protocol contained in the packets. When the five factors are the same, firewalls always choose the same next hop address as the last one used to send the packets.

Whether the S-series switches support non-equivalent load balancing
S series switch load sharing is generally equivalent load sharing, can not achieve non-equivalent load sharing. If you want non-equivalent load balancing, you can only force certain data streams to go through the specified next hop by policy routing.

Does the firewall support load balancing?
The firewall supports load balancing.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top