02-25-2015 12:59 AM - edited 03-05-2019 12:52 AM
Hi,
I have two networks 192.168.0.20 and 192.192.168.30. I want to pass one network by one ISP "Free" with IP 192.168.250.11 and the other by anothere ISP "Orange" 192.168.255.11.
ISP Orange is attached to Vlan 1, ISP Free is attached to Vlan 11
Actually i have done this below, all is going throught ISP Orange. I have one default route, and overload the Interface attached to ISP Orange Vlan1
ip route 0.0.0.0 0.0.0.0 192.168.255.11
access-list 1 permit 192.168.0.0 0.0.255.255
ip route 0.0.0.0 0.0.0.0 192.168.255.11
ip route 0.0.0.0 0.0.0.0 192.168.250.11
access-list 10 permit 192.168.20.0 0.0.0.255
access-list 20 permit 192.168.30.0 0.0.0.255
ip nat inside source list 10 interface Vlan1 overload
ip nat inside source list 20 interface Vlan 11 overload
ip route 0.0.0.0 0.0.0.0 192.168.250.11
ip route 0.0.0.0 0.0.0.0 192.168.250.11
access-list 110 permit 192.168.0.0 0.0.255.255
route map orange permit 10
match ip address 110
match interface Vlan 1
route map free-nat permit 10
match ip address 110
match interface Vlan 11
ip nat inside source route-map orange interface Vlan1 overload
ip nat inside source route-map free interface Vlan11 overload
02-25-2015 07:30 AM
You have to use PBR.
if you just create two default routes you will have traffic from both internal networks going to both links, "free" and "orange". It will create a load balance and you won't have control over which traffic goes where.
After creating PBR solution B would be better, but with two different access-lists, one for each interface, because you have different internal subnets.
02-25-2015 10:33 AM
I agree with this, you definitely need to use PBR to get it to work
02-26-2015 12:21 AM
ok, thanks a lot, i will try this below with PBR, only one default route and two access list.
Router(config)# ip route 0.0.0.0 0.0.0.0 192.168.250.11 // default Gateway FREE
Router(config)# access-list 1 permit 192.168.20.0 0.0.0.255
Router(config)# access-list 2 permit 192.168.30.0 0.0.0.255
Router(config)#route map FREE permit 10
Router(config-route-map)# match ip address 2
Router(config-route-map)# set it next hop 192.168.250.11
Router(config)#route map ORANGE permit 10
Router(config-route-map)#match ip address 1
Router(config-route-map)# set it next hop 192.168.255.11
Router(config)# Vlan 1
Router(config if)# ip policy route map ORANGE
Router(config)# Vlan 11
Router(config if)# ip policy route map FREE
Router(config)# ip nat inside source route-map ORANGE interface Vlan1 overload
Router(config)# ip nat inside source route-map FREE interface Vlan11 overload
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide