Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1044
Views
0
Helpful
1
Replies

PBR is not functioning on 2901 G2 router

Shaikh Aman Uddin
Level 1
Level 1

‎03-17-2011 11:00 PM - edited ‎03-04-2019 11:47 AM

Hi,

I have one router 1841 in which i configured PBR for internet traffic from LAN. I hv two ISPs few server are configured for ISP1 and few for ISP2.I planned to shift my existing setup at 2901 G2 router. when I am configuring the same config on this router so traffic is passing through only from one ISP not from other, if I troubleshoot so I see that the interface which is connected with ISP2 is not getting any input/output packet.

Kindly advise......

Config is here:

==========

interface FastEthernet0/0

description ****** ISP2 ******

ip address 203.xx.xx.110 255.255.255.248

ip access-group blockicmp in

ip nat outside

ip virtual-reassembly

duplex auto

speed auto

!

interface FastEthernet0/1

ip address 192.168.1.1 255.255.255.240

ip nat inside

ip virtual-reassembly

ip policy route-map zee

duplex auto

speed auto

!

interface Serial0/0/0:0

description ***** ISP1 ******

ip address 221.xx.xx.82 255.255.255.252

ip nat outside

ip virtual-reassembly

!

!

ip nat inside source list Link-1 interface Serial0/0/0:0 overload

ip nat inside source list Supernetlink interface FastEthernet0/0 overload

ip nat inside source static 192.168.1.11 203.xx.xx.106

ip nat inside source static 192.168.1.4 203.xx.xx.107

!

!

ip access-list extended Link-1

permit ip host 192.168.1.13 host 221.xx.xx.81

permit ip host 192.168.1.6 any

ip access-list extended Supernetlink

permit ip host 192.168.1.13 host 203.xx.xx.105

permit ip host 192.168.1.13 host 203.xx.xx.3

permit ip host 192.168.1.13 host 203.xx.xx.4

ip access-list extended test_L1

permit ip host 192.168.1.2 any

permit ip host 192.168.1.14 any

permit ip host 192.168.1.7 any

permit tcp host 192.168.1.1 eq 7778 any

permit ip host 192.168.1.10 any

permit ip host 192.168.1.6 any

***********************************

ip access-list extended test_SUPER1

permit ip host 192.168.1.8 any

permit tcp host 192.168.1.11 eq smtp any

permit tcp host 192.168.1.11 any eq smtp

permit tcp host 192.168.1.11 any eq domain

permit ip host 192.168.1.11 any

permit tcp host 192.168.1.5 eq 7778 any

permit tcp host 192.168.1.12 eq ftp-data any

permit tcp host 192.168.1.12 eq ftp any

permit tcp host 192.168.1.12 eq www any

permit tcp host 192.168.1.12 eq domain any

permit ip host 192.168.1.12 any

permit icmp host 192.168.1.13 host 203.xx.x.3

permit icmp host 192.168.1.13 host 203.xx.x.4

permit ip host 192.168.1.4 any

route-map zee permit 10

match ip address test_L1

set ip next-hop 221.120.202.81

!

route-map zee permit 20

match ip address test_SUPER1

set ip next-hop 203.130.2.105

!

route-map zee deny 30

ip nat inside source static 192.168.1.8 203.xx.xx.108

ip nat inside source static 192.168.1.5 203.xx.xx.109

ip nat inside source static 192.168.1.10 221.xx.xx.138

ip nat inside source static 192.168.1.7 221.xx.xx.139

ip nat inside source static 192.168.1.14 221.xx.xx.140

ip nat inside source static 192.168.1.2 221.xx.xx.142

Labels:
0 Helpful
1 Reply 1

cadet alain
VIP Alumni
VIP Alumni

‎03-18-2011 12:35 AM

Hi,

Are you testing on the router itself or sending traffic from the real machines, in the former case you have to add in global config the command ip local policy route-map zee if you want traffic originated by the router to be policy routed.

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful
Customers Also Viewed These Support Documents