Re: PBR Configuration

Sellamuthu Ravi · ‎06-26-2019

Hello Everyone,

I am Newone to Configure cisco router.

i Have one query. Router can be Receiving the packets specially port 80,53 packet only forward to one cache server

Wan port

Port 80 Outgoing Traffic

Lan Interface :

Port 80,53 Incoming Traffic

Configuration Command i need it.

the Both Interface 80,53 packet forward to one cache server.(I need command)

Jon Marshall · ‎06-26-2019

access-list 101 permit udp any any eq 53
access-list 101 permit tcp any any eq 80

route-map PBR permit 10
match ip address 101
set ip next-hop <IP address of cache server>

int <x/y> <--- this is the LAN interface
ip policy route-map PBR

you may want to be more specific in your PBR acl ie. I have used any any.

Jon

Giuseppe Larosa · ‎06-26-2019

Hello Sellamuthu,

you need to define an extended ACL like

access-list 111 permit tcp any any eq 80

access-list 111 permit udp any any eq 53

route-map PBR permit 10

match address 111

set ip next-hop <Cach-ip-address>

on internal interface you apply policy routing using:

interface gi0/0

ip policy route-map PBR

Note: it would be better to use your internal network as source network in ACL

I have supposed you want to divert simple DNS queries that use UDP port 53.

TCP port 53 is used for communication between DNS servers for zone transfers.

It shouldn't be your case.

PBR works only inbound so it needs to be applied to internal interface not to the interace to the internet.

if the cache is a web cache you may be interested in WCCP protocol that is a specialized protocol for interaction with transparent web cache.

Hope to help

Giuseppe