The system automatically inserts routing entries into the routing table for networks that are directly connected to the system. Manual entries are necessary in those cases where there is an additional router which is to be accessed via a specific network. Routes for networks, that are not directly connected and that are inserted to the routing table via a command or a configuration file, are called static routes.
To add a standard static route, proceed as follows:
On the Standard Static Routes tab click New Static Route.
The Add Static Route dialog box opens.
Make the following settings:
Route type: The following route types are available:
- Interface route: Packets are sent out on a particular interface. This is useful in two cases. First, for routing on dynamic interfaces (PPP), because in this case the IP address of the gateway is unknown. Second, for defining a default route having a gateway located outside the directly connected networks.
- Gateway route: Packets are sent to a particular host (gateway).
- Blackhole route: Packets are discarded silently. This is useful in connection with OSPF or other dynamic adaptive routing protocols to avoid routing loops, route flapping, and the like.
Network: Select the destination networks of data packets Sophos UTM on AWS must intercept.
Interface: Select the interface through which the data packets will leave Sophos UTM on AWS (only available if you selected Interface Route as route type).
Gateway: Select the gateway/router to which Sophos UTM on AWS will forward data packets (only available if you selected Gateway Route as route type).
Comment (optional): Add a description or other information.
Optionally, make the following advanced setting:
Metric: Enter a metric value which can be an integer from 0 to 4294967295 with a default of 5. The metric value is used to distinguish and prioritize routes to the same destination. A lower metric value is preferred over a higher metric value. IPsec routes automatically have the metric 0.
The new route appears on the Standard Static Route list.
Enable the route.
Click the toggle switch to activate the route.
To either edit or delete a route, click the corresponding buttons.