06-01-2015 04:06 AM - edited 03-08-2019 12:17 AM
Hi
I have a test subnet on vlan 100 and I want it to use a different default gateway instead of following the default route.
I have a 3560G with IPBase. Tried PBR but it does not accept the Policy command in the vlan interface so after research it seems it is not supported.
IIs there any other way of doing this
Thanks
Solved! Go to Solution.
06-01-2015 05:08 AM
PBR does work on 3560's - im not sure but you might need the ipservices and change the SDM template to prefer routing. Current can be show by "show sdm prefer" command.
06-01-2015 05:11 AM
Not really no.
The other way would be to use VRF-Lite but that also requires an IP Services license on your switch.
The only thing you can really do is place the default gateway in the same IP subnet and then change the default gateway on the hosts.
Edit - sorry if I wasn't clear. As Bilal says PBR is supported but as I mentioned above you need the IP Services license.
Jon
06-01-2015 05:08 AM
PBR does work on 3560's - im not sure but you might need the ipservices and change the SDM template to prefer routing. Current can be show by "show sdm prefer" command.
06-01-2015 05:11 AM
Not really no.
The other way would be to use VRF-Lite but that also requires an IP Services license on your switch.
The only thing you can really do is place the default gateway in the same IP subnet and then change the default gateway on the hosts.
Edit - sorry if I wasn't clear. As Bilal says PBR is supported but as I mentioned above you need the IP Services license.
Jon
06-01-2015 05:29 AM
Thanks guys
Please ignore the static route comment i made and removed
06-01-2015 05:29 AM
no, the static route will only instruct the router to send destination packets to that subnet to next hop IP 192.168.10.10. We want to match the source. Unless the 192.168.10 network is where you want to route to, then this will be the prefered route over the default, in which case yes, it will work, but for everything, not just vlan 100.
Maybe you could do a NAT with another device. Dont think NAT is supported on the 3560.
06-01-2015 05:31 AM
As Bilal says no you can't because you need to route based on source IP and routing using the IP routing table is always done on destination IP.
The gateway is in the same IP subnet so you could manually change the host's gateway or if the firewall supports DHCP allocate the IPs from there.
Alternatively you could upgrade your license to IP Services but if this is temporary it may not be worth it.
Again, as Bilal says, NAT is not supported on those switches with any license.
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide