Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
732
Views
0
Helpful
2
Replies

PBR (using route-map)

Go to solution
Omars
Level 1
Level 1

‎02-29-2016 04:49 AM - edited ‎03-05-2019 03:27 AM

Hello all,
I have a question about PBR (using route-map)
If we have two gateway (1 and 2) to reach a network A, and if a packet matches a route-map but the gateway (1) which is specified in the 'set ip next-hop' command is not reachable. So my question is: will the packet be routed automatically via the gateway (2)? (i.e., it will not be policy routed)
Thank you in advance

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-29-2016 05:33 AM

Hello Sahraoui,

the answer is platform dependent, but generally speaking if the network device where PBR is configured detects the specified next-hop is not available, it will move to use standard destination based routing using remaining available next-hops.

On Catalyst 6500 there was a command to be given in route-map configuration:

set ip next-hop verify-availability

to have the device performs the check. But this required the two next-hops are in different subnets /Vlans in order to have the associated L3 interface SVi vlan x to fail when the port to gateway 1 fails. (this is the so called auto-state of L3 SVI that requires one L2 port to be up and in STP forwarding state to be up in its turn)

In other platforms you can use forms of IP SLA to check the health of next-hops.

In general with multilayer switches you need care to have the two next-hops in different Vlans.

Edit:

I see that the verify-availability is also present for ASR1000 routers in VRF  see

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_pi/configuration/xe-3s/iri-xe-3s-book/iri-pbr-next-hop-verify-availability-for-vrf.html

The command can call a tracked object so and this is the reference to the configured IP SLA.

Hope to help

Giuseppe

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-29-2016 05:33 AM

Hello Sahraoui,

the answer is platform dependent, but generally speaking if the network device where PBR is configured detects the specified next-hop is not available, it will move to use standard destination based routing using remaining available next-hops.

On Catalyst 6500 there was a command to be given in route-map configuration:

set ip next-hop verify-availability

to have the device performs the check. But this required the two next-hops are in different subnets /Vlans in order to have the associated L3 interface SVi vlan x to fail when the port to gateway 1 fails. (this is the so called auto-state of L3 SVI that requires one L2 port to be up and in STP forwarding state to be up in its turn)

In other platforms you can use forms of IP SLA to check the health of next-hops.

In general with multilayer switches you need care to have the two next-hops in different Vlans.

Edit:

I see that the verify-availability is also present for ASR1000 routers in VRF  see

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_pi/configuration/xe-3s/iri-xe-3s-book/iri-pbr-next-hop-verify-availability-for-vrf.html

The command can call a tracked object so and this is the reference to the configured IP SLA.

Hope to help

Giuseppe

0 Helpful

Go to solution
Omars
Level 1
Level 1
In response to Giuseppe Larosa

‎02-29-2016 06:24 AM

Thank you Giuseppe for your help

0 Helpful
Customers Also Viewed These Support Documents