This is my first time configuring OER policy. I want to accomplish the following policy but couldn't find a sample config from Cisco documentations. Can someone help me out?
Router R1 is OER master. Router R2 and R3 are 2 border routers. R1 has OSPF with R2 and R3. R2 and R3 has a direct link in between but not running IGP. I have configured basic OER master and border routers. They are talking fine.
R2 and R3 also have OSPF with external nodes, not BGP.
I want to configure the following outbound policy:
a) for HTTP from user subnet 10.10.10.0/24 to server subnet 10.10.100.0/24, use R2 as exit
b) for FTP from the same user subnet to the same server subnet, use R3 as exit
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
From what you've described, it seems just PBR might satisfy your need.
Unsure OER can do what you desire; PfR (with PIRO) might be required. Also a good chance your link between R2 and R3 might need to be added to your OSPF topology.
1. Log into CLI of DNAC:
ssh maglev@< DNAC appliance IP> -p 2222
2. Run this curl command to get token to get member id:
curl -X POST -u admin:<admin user password> -H -V https://<CLUSTER-IP>/api/system/v1/identitymgmt/token
Enterprise Switching Business Unit is glad to announce Beta release 16.12.2 for all Catalyst 9200/9300/9400/9500/9600 and Catalyst 3650/3850 Platforms. This release is made available to allow users to test, evaluate and share fee...
Purpose of the document
This document describes the general recommendations or best practices when designing and deploying the Cisco SD-Access technology. The document assumes that the reader has a general overview of Cisco's SD-Access for Distributed C...
Do you currently have hands-on networking experience? If you do, we'd love to hear from you!
Your feedback will be reviewed and analyzed by our team to directly influence a networking management and monitoring product.
Take the 20-min or les...