cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2526
Views
0
Helpful
19
Replies

Applying PBR on CAT3560 Switch

samirshaikh52
Level 2
Level 2

Hello Community,

I have created a pbr route-map and i want to apply this interface vlan

But when goes ot interface vlan I dont see the option

ip policy route-map PBR

It says unrecognized command

I dont know whats the issue. Can someon help ?

Thanking in advance

19 Replies 19

Frederic Vanderbecq
Cisco Employee
Cisco Employee

hello,

in order to be able to configure PBR on the 3560, you need to configure SDm prefer routing template.

See: http://www.cisco.com/en/US/docs/switches/lan/catalyst3560/software/release/12.2_25_see/configuration/guide/swsdm.html


Fred

Hi Fred,

I enabled sdm prefer but still the command is not working

Here is the output of sh sdm prefer after reload

ALE-COLLEGE-CORE-SW#sh sdm prefer
The current template is "desktop default" template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1024 VLANs.

number of unicast mac addresses:                  6K
number of IPv4 IGMP groups + multicast routes:    1K
number of IPv4 unicast routes:                    8K
   number of directly-connected IPv4 hosts:        6K
   number of indirect IPv4 routes:                 2K
number of IPv4 policy based routing aces:         0
number of IPv4/MAC qos aces:                      0.5K
number of IPv4/MAC security aces:                 1K

Thank you for your help.

Apparently, the sdm profile is "desktop default". Did you use "sdm prefer routing", save the config and then reload ?


Fred

Yes I tried that but still the same.

I may be related to IOS version because currently it is not ipbase ios.

Can you paste the output of "show ver" ?

Fred

Hi fred,

Here is the output

Cisco IOS Software, C3560E Software (C3560E-UNIVERSAL-M), Version 12.2(50)SE3,
ELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2009 by Cisco Systems, Inc.
Compiled Wed 22-Jul-09 05:57 by prod_rel_team
Image text-base: 0x00003000, data-base: 0x02400000

ROM: Bootstrap program is C3560E boot loader
BOOTLDR: C3560E Boot Loader (C3560E-HBOOT-M) Version 12.2(44r)SE2, RELEASE SOF
ARE (fc1)

MALE-COLLEGE-CORE-SW uptime is 41 minutes
System returned to ROM by power-on
System image file is "flash:/c3560e-universal-mz.122-50.SE3/c3560e-universal-m
122-50.SE3.bin"

License Level: ipbase
License Type: Permanent
Next reload license Level: ipbase

cisco WS-C3560E-12SD (PowerPC405) processor (revision A0) with 262144K bytes o
memory.
Processor board ID FDO1341V01L
Last reset from power-on
11 Virtual Ethernet interfaces
1 FastEthernet interface
16 Gigabit Ethernet interfaces
2 Ten Gigabit Ethernet interfaces
The password-recovery mechanism is enabled.

512K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address       : 00:26:0B:35:C8:00
Motherboard assembly number     : 73-11215-08
Motherboard serial number       : FDO13410P57
Model revision number           : A0
Motherboard revision number     : A0
Model number                    : WS-C3560E-12SD-S
Daughterboard assembly number   : 800-28590-01
Daughterboard serial number     : FDO13370GBE
System serial number            : FDO1341V01L
Top Assembly Part Number        : 800-29161-01
Top Assembly Revision Number    : D0
Version ID                      : V01
CLEI Code Number                : COMU510ARA
Hardware Board Revision Number  : 0x08


Switch Ports Model              SW Version            SW Image
------ ----- -----              ----------            ----------
*    1 18    WS-C3560E-12SD     12.2(50)SE3           C3560E-UNIVERSAL-M


Configuration register is 0xF

According to the following URL:

http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps5528/product_data_sheet09186a00801f3d7d.html

"The IP Base license offers advanced QoS, rate limiting, ACLs, and basic static and Routing Information Protocol  (RIP) routing functions. The IP Services license provides a richer set  of enterprise-class features, including advanced hardware-based IPv6 unicast and IPv6 Multicast routing as well as policy-based routing (PBR)."

According to your show ver, you only have the IP base license and will have to upgrade your license.


Fred

So fred what can i do now, i cannot upgrade the license

in the current situation

Hi fred

by the way I am able to creat route map on the switch but i am not able to apply on vlan interfa
ce

The problem here is not the absence of the CLI but the fact the space allocated for the different features in the TCAM is based on the sdm configuration.

In the document I gave your in my initial answer shows that for PBR, in the default template, there is no resource allocated.

Apart changing the license to be able to configure the sdm routing prefer, you will not be able to use PBR unfortunately.

Fred

It looks like there is no way to aplly route-map with my current model.

Can I use static route for a specifice to route the traffic to another vlan ?

Is is possible ?

Samir

samirshaikh52 wrote:

It looks like there is no way to aplly route-map with my current model.

Can I use static route for a specifice to route the traffic to another vlan ?

Is is possible ?

Samir

Samir

With a static route you cannot specify the source IPs ie. you only say to get to this destination go there. So you cannot do the equivalent of PBR. If you want to send traffic based on it's source IP you need PBR.

Jon

Static routes will not allow you to do the same as PBR. Now, if you want to have a specific host to be reachable via another interface than the one your routing gives you, you can play with static host routes for instance. Though, all traffic for that particular host will follow the static and you cannot differentiate it based on source IP for instance.

Fred

Hi Fred and Jon,

For instance i want to say that ip route 10.1.100.0 255.255.255.0 10.1.101.1

Meaning that route vlan 100 traffic to that destination ip i,e adsl router interface ip.

Can i do this ?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: