Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2877
Views
0
Helpful
2
Replies

Best practice to share/leak routes between VRF and GRT on 6500/VSS

johnnylingo
Level 5
Level 5

‎12-14-2012 03:18 PM - edited ‎03-07-2019 10:37 AM

I have a scenario which is fairly common - certain servers are accessed from the internet via a Load Balancer, and since seeing true client IP is a requirement, the return traffic path must go back through the load balancer.  However, I do not want to route all traffic via the load balancer for obvious performance reasons.  Internal traffic should be routed directly by the Layer 3 switch, which has a default route of a Firewall. 

My plan is to use a VRF for the load balancer and any applicable servers, which works fine.  But now I need to join the VRF's routing table with the switch's GRT (global routing table) so that internal traffic works.  What is the best way to do this?  For scalability reasons I'd like to avoid static routes and I see many examples  using BGP, but in this case it seems overkill since everything is on a single logical switch.  Can I use OSPF instead?  Or a different method?  The Supervisors will be 2Ts, so IOS 15.0 will likely be running.

Labels:
Preview file
26 KB
0 Helpful
2 Replies 2

vmiller
Level 7
Level 7

‎12-14-2012 03:38 PM

Try this doc:

http://www.cisco.com/en/US/tech/tk436/tk832/technologies_configuration_example09186a0080231a3e.shtml

had just about every combination of VRF & Global route leaking.

0 Helpful

Reza Sharifi
Hall of Fame
Hall of Fame

‎12-14-2012 04:10 PM

You can't use OSPF to do this and I don't think IOS 15 supports "vrf select" or "vrf receive" commands.  So, your best solution probably  is using static routes.

https://supportforums.cisco.com/message/972565#972565

HTH

0 Helpful
Customers Also Viewed These Support Documents