Solved: PBR problem

mtebaccount · ‎11-25-2008

Good evening everybody . I have some strange problem with PBR setup on 3825 .

Here is the part of the config :

interface GigabitEthernet0/0.X

encapsulation dot1Q X

ip address x.x.x.x

ip flow ingress

ip flow egress

ip nat inside

ip virtual-reassembly

zone-member security DMZ

ip policy route-map fbsd

!

route-map fbsd deny 5

match ip address fbsd_exc

!

route-map fbsd permit 10

match ip address fbsd1

set ip next-hop 1.1.1.2

!

route-map fbsd permit 20

match ip address fbsd2

set ip next-hop 1.1.1.3

!

And everything works fine , but after router restart i have to manually ping every next-hop from the router to make PBR work . Is there something ive missed ? Thanks in advance , Dmitriy.

Giuseppe Larosa · ‎11-25-2008

Hello Dmitriy,

>> after router restart i have to manually ping every next-hop from the router to make PBR work

After reload the ARP cache of your router is empty and the router doesn't know the MAC address of the next-hops.

You could:

use BFD to create a communication with the next-hops (preferred)

or hardcode the MAC address

Hope to help

Giuseppe

View solution in original post

Giuseppe Larosa · ‎11-25-2008

Hello Dmitriy,

>> after router restart i have to manually ping every next-hop from the router to make PBR work

After reload the ARP cache of your router is empty and the router doesn't know the MAC address of the next-hops.

You could:

use BFD to create a communication with the next-hops (preferred)

or hardcode the MAC address

Hope to help

Giuseppe

mtebaccount · ‎11-25-2008

Hello, Giuseppe.

Actually i can see my next-hop mac adresses in arp table after reload , so i guess there is something else .

EDIT:

Actually my mistake , this really was the arp problem . Thanks for help.

Thanks in advance. Dmitriy.