09-22-2022 11:12 PM
I would like to divert certain traffic via static route via ADSL internet and on other side have leased internet circuit. when doing trace-route from router it is exiting from ADSL but when doing trace-route from PC it is existing from leased line circuit over dmvpn.
How to fix the issue? sample diagram attached for explain.
09-22-2022 11:18 PM
- There is no diagram attached.
M.
09-22-2022 11:26 PM
09-23-2022 12:12 AM - edited 09-23-2022 12:12 AM
Hello
If all traffic defaults via DMPVPN and you want to route certain via the xDSL path then you would require policy-based routing for egress traffic to traverse the xDSL path.
Note: the return traffic may not necessary return via the same path, in this case you will need to either dynamically advertise the path for that specific network to be preferred or append PBR on the destination side.
example:
track timer interface 2
track 10 interface <xdsl> line-protocol
access-list 10 permit 172.16.32.0 0.0.0.255
route-map pbr
match ip address 10
set ip next-hop verify-availability <adsl next hop> 1 track 10
int vlan 1
ip policy-route pbr
09-23-2022 12:16 AM
Problem for the destination IP y.y.y.y is is change after some time. for return traffic something need to be configured on destination side as well?
09-23-2022 12:36 AM - edited 09-23-2022 12:39 AM
Hello
@Adnan Khan wrote:
Problem for the destination IP y.y.y.y is is change after some time. for return traffic something need to be configured on destination side as well?
Not sure what you mean by destination is changed after some time,can you elaborate?
For the return path - Yes most probably it will need to be, either by PBR or dynamic routing with path engineering so traffic returns the way you want it to.
Can you elaborate on how you network is setup, what routing process (static/dynamic) you use etc...
09-22-2022 11:52 PM
share output of 'show ip route' in router
09-23-2022 12:12 AM
Can't share the routing table but for y.y.y.y route i see the next hop is ADSLso in tracert of user pc should be adsl IP 10.1 intead of 111.1
09-23-2022 06:48 AM
I would like to divert certain traffic via static route via ADSL internet and on other side have leased internet circuit. when doing trace-route from router it is exiting from ADSL but when doing trace-route from PC it is existing from leased line circuit over dmvpn.
friend that it case, there is no issue at all,
GRE (DMVPN) is route-based VPN and the traffic is route via the GRE tunnel and other side learn this prefix via GRE tunnel.
if you want to make some traffic go other than GRE tunnel you can not use static route ?? why
because the static route have AD =1 and direct is 0 and since the GRE for router is direct connect so it 0
this make all route via GRE tunnel and never check static route.
solution
use PBR instead of static route
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide