在一台SRG2200上配置了策略路由后，发现内网接口不能telnet了，也ping不通，但数据转发正常。上网查了一下路由选择的顺序最先匹配策略路由，其次是路由表，最后是默认路由。我对内网网关访问估计是匹配了策略路由，而直连路由是在路由表中的。

觉得华为这样设计有些不合理，对内网网关的访问属于同一网段的访问，没必要匹配到策略路由。

相关配置：#acl number 2000rule 5 permit source 192.168.0.0 0.0.0.255#policy-based-route test permit node 10if-match acl 2000apply ip-address next-hop 172.16.0.1#interface GigabitEthernet0/0/0 //内网网关ip address 192.168.0.1 255.255.255.0ip policy-based-route test

路由器信息：

display version

Huawei Versatile Routing Platform Software

Software Version: SRG2200 V100R002C02SPC300 (VRP (R) Software, Version 5.30)

Copyright (c) 2008-2011 Huawei Technologies Co., Ltd.

HUAWEI SRG2210 uptime is 0 week, 0 day, 0 hour, 4 minutes

display ip routing-table statistics

Proto total active added deleted freed

routes routes routes routes routes

DIRECT 4 4 4 0 0

STATIC 0 0 0 0 0

RIP 0 0 0 0 0

OSPF 0 0 0 0 0

IS-IS 0 0 0 0 0

BGP 0 0 0 0 0

Total 4 4 4 0 0