Solved: LAN static routing issue

rwomble01 · ‎09-10-2018

I'm having a weird issue on a Catalyst 3560 where I have routed a subnet to a firewall but when you do a trace route it's hitting a different device. What would supersede a static route?

paul driver · ‎09-12-2018

Hello

You router is being told to get to 172.16.70.1 via 172.16.10.254 and thats the default route.

ip route 172.16.70.0 255.255.255.0 172.16.10.254

S 172.16.70.0 [1/0] via 172.16.10.254
S* 0.0.0.0/0 [1/0] via 172.16.10.254

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

paul driver · ‎09-10-2018

Hello

@rwomble01 wrote:

I'm having a weird issue on a Catalyst 3560 where I have routed a subnet to a firewall but when you do a trace route it's hitting a different device. What would supersede a static route?

A connected route or a static to an connected interface

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

rwomble01 · ‎09-10-2018

Hi Paul,

Thanks for your reply. The only connected routes are for the configured VLANS and don't include this subnet. I'm not sure what to make of this. I can say this. It's routing to the the gateway of last resort instead of my static route that I have configured.

paul driver · ‎09-10-2018

Hello

Please post output

sh run

sh ip route

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

rwomble01 · ‎09-10-2018

Running Config

! Last configuration change at 09:54:13 CDT Mon Sep 10 2018 by perkadmin
! NVRAM config last updated at 10:57:47 CDT Mon Sep 10 2018 by perkadmin
!
version 12.2
no service pad
service timestamps debug uptime
service timestamps log datetime
no service password-encryption
service sequence-numbers
!
hostname
!
boot-start-marker
boot-end-marker
!
enable secret 5
enable password
!
username
username
!
!
aaa new-model
!
!
aaa authentication login default local
!
!
!
aaa session-id common
clock timezone CST -6
clock summer-time CDT recurring
system mtu routing 1500
authentication mac-move permit
ip subnet-zero
ip routing
!
!
cluster enable SHADECL 0
cluster member 1 mac-address 0004.9af7.ca40
cluster member 2 mac-address 0016.479c.1d80
cluster member 3 mac-address 0004.c113.1d80
cluster member 4 mac-address 0017.5966.1e80
cluster member 5 mac-address 0004.c112.d5c0
cluster member 6 mac-address 0017.5a3c.8400
cluster member 7 mac-address 0017.597b.3700
!
mls qos map cos-dscp 0 8 16 26 32 46 48 56
mls qos srr-queue input bandwidth 90 10
mls qos srr-queue input threshold 1 8 16
mls qos srr-queue input threshold 2 34 66
mls qos srr-queue input buffers 67 33
mls qos srr-queue input cos-map queue 1 threshold 2 1
mls qos srr-queue input cos-map queue 1 threshold 3 0
mls qos srr-queue input cos-map queue 2 threshold 1 2
mls qos srr-queue input cos-map queue 2 threshold 2 4 6 7
mls qos srr-queue input cos-map queue 2 threshold 3 3 5
mls qos srr-queue input dscp-map queue 1 threshold 2 9 10 11 12 13 14 15
mls qos srr-queue input dscp-map queue 1 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue input dscp-map queue 1 threshold 3 32
mls qos srr-queue input dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue input dscp-map queue 2 threshold 2 33 34 35 36 37 38 39 48
mls qos srr-queue input dscp-map queue 2 threshold 2 49 50 51 52 53 54 55 56
mls qos srr-queue input dscp-map queue 2 threshold 2 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 24 25 26 27 28 29 30 31
mls qos srr-queue input dscp-map queue 2 threshold 3 40 41 42 43 44 45 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 5
mls qos srr-queue output cos-map queue 2 threshold 3 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 2 4
mls qos srr-queue output cos-map queue 4 threshold 2 1
mls qos srr-queue output cos-map queue 4 threshold 3 0
mls qos srr-queue output dscp-map queue 1 threshold 3 40 41 42 43 44 45 46 47
mls qos srr-queue output dscp-map queue 2 threshold 3 24 25 26 27 28 29 30 31
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 3 threshold 3 32 33 34 35 36 37 38 39
mls qos srr-queue output dscp-map queue 4 threshold 1 8
mls qos srr-queue output dscp-map queue 4 threshold 2 9 10 11 12 13 14 15
mls qos srr-queue output dscp-map queue 4 threshold 3 0 1 2 3 4 5 6 7
mls qos queue-set output 1 threshold 1 138 138 92 138
mls qos queue-set output 1 threshold 2 138 138 92 400
mls qos queue-set output 1 threshold 3 36 77 100 318
mls qos queue-set output 1 threshold 4 20 50 67 400
mls qos queue-set output 2 threshold 1 149 149 100 149
mls qos queue-set output 2 threshold 2 118 118 100 235
mls qos queue-set output 2 threshold 3 41 68 100 272
mls qos queue-set output 2 threshold 4 42 72 100 242
mls qos queue-set output 1 buffers 10 10 26 54
mls qos queue-set output 2 buffers 16 6 17 61
mls qos
!
!
!
spanning-tree mode pvst
spanning-tree etherchannel guard misconfig
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
!
!
interface GigabitEthernet0/1
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/2
description Trunk to ServerRoom Switch
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface GigabitEthernet0/3
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/4
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/5
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/6
description Cisco Voice Router
switchport trunk encapsulation dot1q
switchport mode trunk
speed 100
duplex full
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
mls qos trust dscp
auto qos voip trust
macro description cisco-router
spanning-tree portfast trunk
spanning-tree bpduguard enable
!
interface GigabitEthernet0/7
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/8
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/9
switchport trunk encapsulation dot1q
switchport mode trunk
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
mls qos trust cos
auto qos voip trust
macro description cisco-switch
spanning-tree link-type point-to-point
!
interface GigabitEthernet0/10
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/11
switchport mode access
switchport port-security
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop | cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/12
description Cisco ASA5540
switchport trunk encapsulation dot1q
switchport mode trunk
speed 100
duplex full
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
mls qos trust dscp
auto qos voip trust
macro description cisco-router
spanning-tree portfast trunk
spanning-tree bpduguard enable
!
interface GigabitEthernet0/13
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/14
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop | cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/15
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/16
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/17
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/18
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/19
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
power inline never
speed 100
duplex full
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/20
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/21
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/22
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/23
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/24
switchport mode access
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/25
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/26
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/27
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/28
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/29
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/30
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/31
description Connect to PLayPOwER
switchport mode access
!
interface GigabitEthernet0/32
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop | cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/33
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/34
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/35
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/36
switchport mode access
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
power inline never
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/37
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/38
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/39
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/40
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-drface GigabitEthernet0/45
!
interface GigabitEthernet0/41
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/42
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/43
description Connect to Masergy Router
switchport mode access
speed 100
duplex full
!
interface GigabitEthernet0/44
switchport mode access
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop | cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/45
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/46
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet0/47
description Connected to MPLS Router
switchport trunk encapsulation dot1q
switchport mode trunk
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
mls qos trust cos
auto qos voip trust
macro description cisco-router
spanning-tree portfast trunk
spanning-tree bpduguard enable
!
interface GigabitEthernet0/48
description Connected to Barracuda Web Filter
switchport trunk encapsulation dot1q
switchport mode trunk
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
mls qos trust cos
auto qos voip trust
macro description cisco-switch
!
interface GigabitEthernet0/49
description Trunk to ServerRoom Switch
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface GigabitEthernet0/50
description Connect to Building 4
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface GigabitEthernet0/51
description Trunk to Building3
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface GigabitEthernet0/52
description Connect to Bulding 2
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface Vlan1
ip address 172.16.10.5 255.255.255.0
!
interface Vlan11
ip address 172.16.11.5 255.255.255.0
ip helper-address 172.16.10.101
ip helper-address 172.16.10.102
!
interface Vlan12
ip address 172.16.12.5 255.255.255.0
ip helper-address 172.16.10.101
ip helper-address 172.16.10.102
!
interface Vlan13
ip address 172.16.13.5 255.255.255.0
ip helper-address 172.16.10.101
ip helper-address 172.16.10.102
!
interface Vlan14
ip address 172.16.14.5 255.255.255.0
ip helper-address 172.16.10.101
ip helper-address 172.16.10.102
!
interface Vlan15
ip address 172.16.15.5 255.255.255.0
ip helper-address 172.16.10.101
ip helper-address 172.16.10.102
!
ip default-gateway 172.16.10.4
ip classless
ip route 0.0.0.0 0.0.0.0 172.16.10.254
ip route 10.10.0.0 255.255.0.0 172.16.10.253
ip route 10.100.10.0 255.255.255.0 172.16.10.253
ip route 10.100.40.0 255.255.255.0 172.16.10.253
ip route 10.100.50.0 255.255.255.0 172.16.10.253
ip route 10.100.60.0 255.255.255.0 172.16.10.253
ip route 10.100.80.0 255.255.255.0 172.16.10.253
ip route 128.1.0.0 255.255.0.0 172.16.10.253
ip route 169.254.200.0 255.255.255.0 172.16.10.253
ip route 172.16.16.0 255.255.255.0 172.16.70.1
ip route 172.16.30.0 255.255.255.0 172.16.10.254
ip route 172.16.35.0 255.255.255.0 172.16.10.254
ip route 172.16.50.0 255.255.255.0 172.16.10.30
ip route 172.16.70.0 255.255.255.0 172.16.10.254
ip route 172.16.200.0 255.255.255.0 172.16.70.1
ip route 172.20.213.136 255.255.255.252 172.16.10.30
ip route 172.20.220.4 255.255.255.252 172.16.10.30
ip route 172.20.252.40 255.255.255.252 172.16.10.30
ip route 172.21.17.192 255.255.255.252 172.16.10.30
ip route 192.168.2.0 255.255.255.0 172.16.70.1
ip route 192.168.3.0 255.255.255.0 172.16.10.253
ip http server
!
!
ip sla enable reaction-alerts
no logging trap
snmp-server community OMfulcrum$/RO RO
snmp-server community OMfulcrum$/RO@es0 RO
snmp-server community OMfulcrum$ RO
!
!
line con 0
password
line vty 0 4
password
length 0
line vty 5 15
password
!
!
monitor session 1 source vlan 1 , 11 - 15
monitor session 1 destination interface Gi0/24
ntp clock-period 36028858
ntp server 172.16.10.101
end

sh ip route

sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route

Gateway of last resort is 172.16.10.254 to network 0.0.0.0

169.254.0.0/24 is subnetted, 1 subnets
S 169.254.200.0 [1/0] via 172.16.10.253
172.16.0.0/24 is subnetted, 12 subnets
S 172.16.200.0 [1/0] via 172.16.70.1
S 172.16.50.0 [1/0] via 172.16.10.30
S 172.16.35.0 [1/0] via 172.16.10.254
S 172.16.30.0 [1/0] via 172.16.10.254
S 172.16.16.0 [1/0] via 172.16.70.1
C 172.16.12.0 is directly connected, Vlan12
C 172.16.13.0 is directly connected, Vlan13
C 172.16.14.0 is directly connected, Vlan14
C 172.16.15.0 is directly connected, Vlan15
C 172.16.10.0 is directly connected, Vlan1
C 172.16.11.0 is directly connected, Vlan11
S 172.16.70.0 [1/0] via 172.16.10.254
172.21.0.0/30 is subnetted, 1 subnets
S 172.21.17.192 [1/0] via 172.16.10.30
172.20.0.0/30 is subnetted, 3 subnets
S 172.20.220.4 [1/0] via 172.16.10.30
S 172.20.252.40 [1/0] via 172.16.10.30
S 172.20.213.136 [1/0] via 172.16.10.30
S 128.1.0.0/16 [1/0] via 172.16.10.253
10.0.0.0/8 is variably subnetted, 6 subnets, 2 masks
S 10.10.0.0/16 [1/0] via 172.16.10.253
S 10.100.80.0/24 [1/0] via 172.16.10.253
S 10.100.40.0/24 [1/0] via 172.16.10.253
S 10.100.60.0/24 [1/0] via 172.16.10.253
S 10.100.50.0/24 [1/0] via 172.16.10.253
S 10.100.10.0/24 [1/0] via 172.16.10.253
S 192.168.2.0/24 [1/0] via 172.16.70.1
S 192.168.3.0/24 [1/0] via 172.16.10.253
S* 0.0.0.0/0 [1/0] via 172.16.10.254

paul driver · ‎09-10-2018

Hello

When you have ip routing enabled and ip default-gateway, Your D/G (172.16.10.4) isnt used its ignored, however it its doing no harm being in their.

Also you have stated in your statics that for most of those networks they can be reached via 172.16.10.253 and your default route is 172.16.10.254 which are both on your vlan 1.

So what are 172.16.10.253/254 ?
And what source address/s are you trying to reach these networks with?

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

rwomble01 · ‎09-11-2018

.253 is a managed ATT router for MPLS and .254 is a managed Masergy router for a different MPLS. Doesn't matter which source address I try from. It all has the same result. From this config...to me it doesn't make any sense why 172.16.16.0 won't go to my static route I have it set to. It's supposed to go to 172.16.70.1(ASA) but it's going to 172.16.10.254(Managed Masergy Router)

rwomble01 · ‎09-11-2018

So I found this entry in the CEF table

172.16.16.0/24 172.16.10.254 Vlan1

This is my issue. How do I clear this out?

paul driver · ‎09-12-2018

Hello

You router is being told to get to 172.16.70.1 via 172.16.10.254 and thats the default route.

ip route 172.16.70.0 255.255.255.0 172.16.10.254

S 172.16.70.0 [1/0] via 172.16.10.254
S* 0.0.0.0/0 [1/0] via 172.16.10.254

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

rwomble01 · ‎09-12-2018

I totally had brain fart and looked over that. Thanks Paul.

rwomble01 · ‎09-11-2018

Hello,

Can you give me some tips on getting that out of the CEF table? I've tried rebooting the switch hoping the static route I have in place would take precedence over CEF but that entry is still in there. I've added no ip route-cache to vlan 1. I can't seem to get this out of here. Any help on this would be greatly appreciated.

best regards,

Rob

balaji.bandi · ‎09-10-2018

show ip route will give you full information for that route.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

rwomble01 · ‎09-10-2018

Thanks for your reply BB,

I do know how to view the routes that are configured. That's what's brought me here. What I see in the config doesn't make sense when I trace route because it's not going where I have it configured to go.

balaji.bandi · ‎09-10-2018

what is the device ?

any device of cisco

if you see # you can type show ip route you see routes.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help