I have an ASA on which I'm trying to use PBR to route to one of two ISPs which
I'll call "slow" and "fast."
The interface to the slow ISP is connected to a subnet on which the next-hop
address is clearly in the subnet and it would count as "directly connected."
The interface to the fast ISP is connected via pppoe. The interface address
is on a different subnet than the next-hop address so it would not be directly
connected.
The default route is to the slow ISP.
When I create route maps to send traffic to the slow ISP, I see the next-hop
address being selected and the egress interface selected in the first phase
of the packet trace. That tells me that my rules are working.
When I switch the map's next-hop address to be the next-hop address of the fast
ISP interface, PBR is selecting the right next-hop address, but it leaves the
egress interface decision to the next processing step, which always selects
the slow ISP interface. Using the recursive next-hop address selection in
the route map doesn't correct the problem.
Any suggestions on how to fix this? The only thing I can think of is to set
the default route to the fast ISP and use PBR to route to the exceptions
that need to go over the slow ISP instead of now where the exceptions
are to route to the fast ISP.
