Re: Implementing Custom Traffic ( Prefer Color TLOC )

MsmanXY · ‎04-10-2024

Dear All Friend and Experts,

We have two site :

Site A & B

VP0 is transport

VPN 10 is services VPNho

Site A has a Server IP is x.x.x.x

Site B have two clien are 1.1.1.1 and 1.1.1.2

Two Tunnel , Two TLOC color biz-internet and pub-internet

Now my customer they WAN creat a policy as below :

1.Traffic ( any traffic/all ports ) from client 1.1.1.1 on Site B go to server x.x.x.x on Site A via Pub-Internet

2. Traffic ( any traffic/all ports ) from client 1.1.1.2 on Site B go to server x.x.x.x on Site A via Biz-Internet

I know that logic, its like PBR on tranditional network . But on Vmange I dont know how to config this policy step by step . Can you guys help me.

Thank you so much !

Kanan Huseynli · ‎04-10-2024

Hi,

if you have requirement only for this flow then below workflow should work:

1) create centralized data policy for site_B which has below sequences:

#10 match data prefix source IP 1.1.1.1 destination IP x.x.x.x.x, action local-TLOC = public-internet
#20 match data prefix source IP 1.1.1.2 destination IP x.x.x.x.x, action local-TLOC = biz-internet

default action allow any

2) create centralized data policy for site_A which has below sequences:

#10 match data prefix source IP x.x.x.x.x destination IP 1.1.1.1 , action local-TLOC = public-internet
#20 match data prefix source IP x.x.x.x.x destination IP 1.1.1.1, action local-TLOC = biz-internet

default action allow any

Apply these policies per site direction from service_to_tunnel.

Note that, in order to have centralized data policy your vSmart(s) needs to be managed by vManage.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.