Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
561
Views
0
Helpful
2
Replies

PBR issue

Go to solution
stephen.stack
Level 4
Level 4

‎03-16-2011 03:45 AM - edited ‎03-04-2019 11:45 AM

Hi All,

I am deploying PBR at the moment in a simple configuration. The 'ip policy' is applied to a sub-interface on a 2811 and all ACLs and route-maps look good. I am using NAT also in this configuration. It is a very simple build, basically stating that all traffic inbound on this sub-interface is to use a next hop of x.x.x.x

My testing is not working, but i need clarity on this. For different reasons, i am not able to tests with hosts on the relevant VLAN yet, as there is not. So i am testing on the local router using the sub-interface as the source IP. i.e. 'ping 8.8.8.8 souce int fa0/0.99' or telnet www.cisco.com 80 source fa0.0.99

Nat appears to be working, but my debug on ip policy is not showing any hits. Will my tests work when i am sourcing packets from the locally connected interface? My reckoning is that it should.

Thanks

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
cadet alain
VIP Alumni
VIP Alumni

‎03-16-2011 04:10 AM

Hi,

If you want to test with packets sourced from the router you must  put global command ip local policy route-map.

Regards.

Alain.

Don't forget to rate helpful posts.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
cadet alain
VIP Alumni
VIP Alumni

‎03-16-2011 04:10 AM

Hi,

If you want to test with packets sourced from the router you must  put global command ip local policy route-map.

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful

Go to solution
stephen.stack
Level 4
Level 4
In response to cadet alain

‎03-16-2011 07:22 AM

Thanks Alain.

I was not aware you could apply 'ip policy' globally. Nonetheless, i labbed it up in GNS and low and behold PBR work when packets were sourced from outside the router, and failed when ther were sourced internally.

Thanks for your help

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful
0 Helpful
Customers Also Viewed These Support Documents