Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
863
Views
5
Helpful
5
Replies

Configure direct internet access on Cisco 1100

DAVID
Level 3
Level 3

‎08-28-2022 08:08 AM - edited ‎08-28-2022 11:20 AM

I want to be able to configure a Cisco C1100 ISR to support two different WAN circuits.  Currently, all traffic from sourcing from the inside subnet 172.31.254.x/24 is directed to a default route to gig0/0/0.  I am testing out a DIA proof of concept where all guest traffic sourcing from 192.168.31.x/24 will traverse to the local internet connection going out gig0/0/1 at the C1100.

DAVID_0-1661699026830.png

The intent is to create a guest wireless network so users will access the guest SSID configured on the 3702 AP that is managed by the WLC in flexconnect  and get an IP address from the C1100 router from a DHCP Pool on the 192.168.31.x/24 subnet with the default gateway of 192.168.31.1 (This is the provider) where the traffic will be passed onto the Internet connection at the store.

The new connection on gig0/1 will be outbound only from 192.168.31.x/24 subnet 

Labels:
5 Replies 5

Kasun Bandara
VIP
VIP

‎08-28-2022 08:21 AM

you can use PBR (policy based routing) for this requirement. one sample is https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_pi/configuration/xe-16-5/iri-xe-16-5-book/iri-pbr.html 

commands may slightly different. if these commands not working check for specific configurations related to 1100 router

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎08-28-2022 08:38 AM

Check some PBR examples: (ignore if you are not required to fail over.)

https://www.balajibandi.com/wp-admin/post.php?post=1643&action=edit

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

MHM Cisco World
VIP
VIP

‎08-28-2022 08:45 AM

Need Both Advertise specific Prefix via PE for Inbound
and also use PBR for outbound. 

0 Helpful

paul driver
VIP
VIP

‎08-28-2022 03:30 PM

Hello
sounds like as suggested by othersyou need to policy route the wifi network via gig0/1 however this doesn’t mean the return traffic will comeback the same way so to remedy that you could as-prepend egress the wifi network on the gig0/0 bgp peer also do the same for all other networks egress on gig0/1 bgp peer


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Joseph W. Doherty
Hall of Fame
Hall of Fame

‎08-28-2022 03:45 PM

Hmm, don't know if your 1100 support VRF, but if it did, that might be an alternative to PBR.

One reason I suggest VRF, as I suspect you want to really keep you guest Internet traffic, security wise, separate from your corporate traffic, VRF likely is better suited for that goal.

BTW. if you're not too familiar with VRF, its sort of the L3 equivalent of L2 VLANs.

0 Helpful
Customers Also Viewed These Support Documents