Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
717
Views
0
Helpful
2
Replies

Route-Maps On L3 3750 Swithces

Dan Man
Level 1
Level 1

‎12-07-2012 10:35 AM - edited ‎03-04-2019 06:21 PM

I have the following set up, at one of our sites:

Drawing27.gif

What I would like to do is take non 10.x.x.x web traffic, and pipe it through the ISP2 link, and keep all other 10.x.x.x traffic over the main ISP1 link.  I would like to set this up on the L3 3750's that we have.  Here is my configuration for the 3750's (IP's have been changed for security):

track 222 ip sla 222 reachability

track 223 ip sla 223 reachability

ip access-list extended INTERNETTRAFFIC

permit tcp 10.1.1.0 0.0.1.255 any eq www       - Internet LAN subnet

permit tcp any 10.1.1.0 0.0.1.255 eq www

permit tcp any eq www 10.1.1.0 0.0.1.255

ip access-list extended NONINTERNETTRAFFIC

permit tcp 10.1.1.0 0.0.1.255 10.0.0.0 0.255.255.255 eq www

permit tcp 10.0.0.0 0.255.255.255 10.1.1.0 0.0.1.255 eq www

deny   tcp 10.1.1.0 0.0.1.255 any eq www

ip sla 222

path-echo 10.58.2.49     - GRE Tunnel on ISP 2

ip sla schedule 222 life forever start-time now

ip sla 223

path-echo 10.40.0.190 - MPLS Link on ISP 1

ip sla schedule223 life forever start-time now

route-map INTERNET_TRAFFIC permit 10

match ip address NON_INTERNET_TRAFFIC

set ip next-hop verify-availability 10.40.0.190 10 track 223

set ip next-hop verify-availability 10.40.2.1 20 track 222   - IP of backup VPN router interface

ip policy route-map INTERNET

route-map INTERNETTRAFFIC permit 20

match ip address INTERNETTRAFFIC

set ip next-hop verify-availability 10.40.2.1 30 track 222

set ip next-hop verify-availability 10.40.0.190 40 track 223

interface vlan 99 – internal LAN subnet

   ip policy route-map INTERNETRAFFIC

I'm applying the policy route-map to the VLAN interface, but do not see any traffic, once I apply the interface.  I'm not that experienced, with route-maps, so I was hoping that someone could assist.  I really do appreciate it!

Labels:
0 Helpful
2 Replies 2

Abzal
Level 7
Level 7

‎12-07-2012 11:29 AM

Hi,
It's not so clear from what subnets, what ip addresses of ISPs. Diagram of network topology would be helpful.

Sent from Cisco Technical Support iPhone App

Best regards,
Abzal
0 Helpful

Dan Man
Level 1
Level 1
In response to Abzal

‎12-07-2012 12:35 PM

Abzal,

Thank you for your reply back.  I'm not sure if the image that I included, in the original post, is visible.  If not, I can attach another.  To answer your questions, let's say that ISP 1, which would be our MPLS link has an address of 3.3.3.3 (ISP1), our GRE tunnel provider, which is ISP 2, would have an address of 2.2.2.2 (ISP 2).  Our local LAN subnet would be 10.1.1.0/22.  I would like all 10.1.1.0/22 traffic, going to non 10.x.x.x HTTP/HTTPS traffic to flow over the ISP2 link, while all other 10.1.1.0/22 traffic goes over the ISP1 link.  I hope that helps.  Please let me know if it doesn't.  Thanks!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card