Cisco 3750X - PBR not working (Already change SDM profile)

rafael.alves · ‎01-26-2017

Hello everyone

I am setting up the PBR in a cisco 3750. The route-map is ok, I even triggered a SLA and a track object, but the interface "ip policy" command is not being retained in running-config. The SDM profile is set up as routing already:

BR-SP-CPQ-M01-C01#sh sdm prefer
The current template is "desktop routing" template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1024 VLANs.

number of unicast mac addresses: 3K
number of IPv4 IGMP groups + multicast routes: 1K
number of IPv4 unicast routes: 11K
number of directly-connected IPv4 hosts: 3K
number of indirect IPv4 routes: 8K
number of IPv4 policy based routing aces: 0.5K
number of IPv4/MAC qos aces: 0.5K
number of IPv4/MAC security aces: 1K

Does anyone know anything about that?

Richard Burts · ‎01-26-2017

It might be helpful if you told us exactly which version of code and what feature set your switch is running.

It would also be helpful if you would post the output that you get from the interface command

ip policy ?

HTH

Rick

HTH

Rick

rafael.alves · ‎01-26-2017

Thanks for the prompt response.

This is the code:

Cisco IOS Software, C3750E Software (C3750E-UNIVERSALK9-M), Version 12.2(58)SE2, RELEASE SOFTWARE (fc1)

And this is the ip interface output. Looks like the ip policy is disabled:

BR-SP-CPQ-M01-C01#sh ip inter vlan 700
Vlan700 is up, line protocol is up
Internet address is 10.161.118.1/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is 10.161.45.5
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is disabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are never sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF switching turbo vector
IP Null turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
Input features: MCI Check
Output features: Input interface drop, Check hwidb
WCCP Redirect outbound is disabled
WCCP Redirect inbound is disabled
WCCP Redirect exclude is disabled

Richard Burts · ‎01-26-2017

Yes it does appear that Policy Based Routing is disabled. I have seen references that say that IP Services is required to support PBR on the 3750. What licenses are enabled for the software on your switch?

HTH

Rick

HTH

Rick

rafael.alves · ‎01-27-2017

here it is:

BR-SP-CPQ-M01-C01# sh license
Index 1 Feature: ipservices
        Period left: Life time
        License Type: Permanent
        License State: Active, In Use
        License Priority: Medium
        License Count: Non-Counted

Index 2 Feature: ipbase
        Period left: 0 minute 0 second

Richard Burts · ‎01-30-2017

Thanks for confirming that the license is ipservices. That should support PBR. I wonder if the issue might be the SDM template. It is currently desktop routing. Can you check and tell us what other options are available?

HTH

Rick

HTH

Rick

Julio E. Moisa · ‎01-26-2017

Hi

Have you configured the port as layer 3? using no switchport?. Or do you want to use ip local policy route-map? Could you please provide more details.

Thanks.

>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<

rafael.alves · ‎01-27-2017

It's a SVI. It's layer 3 by default.

Julio E. Moisa · ‎01-27-2017

it should work otherwise try to open a Cisco TAC case in order to check for a bug or verify if your IOS has the capabilities.

Regards.

>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<

rafael.alves · ‎01-30-2017

Apparently, and for some mysterious reason, I need to add the ip policy configuration before creating the route-map..

BR-SP-CPQ-M01-C01#sh ip inter vlan 700 | inc Policy
IP route-cache flags are Fast, Policy, CEF
Policy routing is enabled, using route map ATT_PBR_R02
BGP Policy Mapping is disabled
Input features: Policy Routing, MCI Check
BR-SP-CPQ-M01-C01#sh run inter vlan 700 | inc ip policy
ip policy route-map ATT_PBR_R02

Now I can see the PBR enabled in the interface.

Well, thanks for the help.

Richard Burts · ‎01-30-2017

Thank you for posting back to the forum to let us know that you have it working. I am glad that it did not turn out to be some strange issue about license or about SDM profile.

HTH

Rick

HTH

Rick

Diana Karolina Rojas · ‎02-01-2017

Hello!

What output do you get from your logs?

Regards,