PBR using network settings, mwan3, etc. and our Wiki examples

[Philip Prindeville]

Hi,

I was looking through the Wiki of a useful example of policy-based routing when one is multi-homed and you want to force a certain type of traffic out a particular interface.

In my case, my SMTP traffic can only egress my non T-Mobile 5G for Business Internet connection because, despite claiming to be “5G for Business Internet”, they don’t consider rDNS or outbound SMTP to be essential business functions.  Not sure how to do mTLS without certificate pinning to a DNS-based Subject Alternate Name (SAN) in X.509, but that’s a separate issue.  I could pin to an IPv4 address but shouldn’t have to.

Anyway, yes, I’m about to use mwan3 for multihoming but as far as my outbound SMTP traffic is considered I’m unfortunately single-homed.

Anyone have some UCI for my network config that would accomplish this?  Might be something useful to include in the PBR or routing sections of our Wiki.

Thanks,

-Philip