cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1297
Views
0
Helpful
4
Replies

BVI and PBR on C1841

na26
Level 1
Level 1

Hello,

i've some problems using PBR on BVI. In my lab (layout attached) on RTR3  i've configured:

- BVI with two subinterface (f0/0.10 abd fa0/1.10) with one public IP (BVI10: 1.1.1.4/24) to reach ISP1 router (RTR1)

- int fa0/0.255 subinterface to connect the ISP2 router (RTR2)

Attached to RTR3 f0/1 i've connected an ASA on e0/0 (trunk port) with VLAN10 with public IP 1.1.1.5/24, the e0/5 with VLAN1 connects LAN subnet 192.168.0.0 where i've all my hosts.

The ASA's gw is the BVI 10 on RTR3 and RTR3 points to RTR1 with a static route. In this configuration all it's ok and i'm able to reach internet through RTR1.

Now, i would like to apply PBR on RTR3 to redirect http traffic (for example) to RTR2

i'm trying with:

ip access-list extended al-http-traffic

permit tcp any any eq www

!

route-map RM_PBR permit 20

match ip address al-http-traffic

set ip next-hop 192.168.1.10

and i've:

#sh route-map

route-map RM_PBR, permit, sequence 20

  Match clauses:

    ip address (access-lists): al-http-traffic

  Set clauses:

    ip next-hop 192.168.1.10

  Policy routing matches: 8711 packets, 605190 bytes

But i'm not able to reach internet..

I think I am missing something... what could be wrong/missing ?

Thank you!

N.

4 Replies 4

na26
Level 1
Level 1

Hi,

anyone has ideas about my question ?

thanks,

N

i have the same issue  , did you find a solution ?

mark.ozga
Level 1
Level 1

You have to apply to both sub-interfaces f0/0.10 and fa0/1.10 like so:

 

int f0/0.10

encapsulation dot1q 10

ip policy route-map RM_PBR

end

 

int f0/1.10

encapsulation dot1q 10

ip policy route-map RM_PBR

end

 

 

Hello

I must be missing something here so apologies, but why are you bridging on the rtr for the two lan subnets - Looking at your topology a simple "router on a stick" setup would be applicable?

 

res

Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
Review Cisco Networking for a $25 gift card