Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2762
Views
0
Helpful
32
Replies

PBR 3560 12.2(53) ipservice

Go to solution
CT_Dude
Level 1
Level 1

‎08-13-2010 07:38 AM - edited ‎03-06-2019 12:28 PM

Hope someone can spread some light here please..

Trying to setup PBR for traffic from one server to another to go over a direct link between site A and B.

But it looks like PBR is not going over the P2P but over the VPN tunnel.

Is there any way I can check activ connections maybe?

Is the config incorrect?

Config as follow :

Site A

Site B

Riverbeds DG pointing to Switch (Site A and B)

Connected via a VPN tunnel on Cisco ASA 5510.

Also have a P2P connection between 2 sites connected on a 3560 8 Port Poe with ver 12.2(53) ipservice image loaded.

ip routing (enable on both switches)

Switch (Site A)

Interface Fa0/1

descripotion (Connected ASA 5510)

speed 100

duplex full

Interface Fa0/8

description (direct connection to site B)

no switchport

ip address 10.0.0.1 255.255.255.252

speed 100

duplex full

Interface Gi0/1

description (Connected to riverbed)

Interface Vlan1

ip address 192.168.100.1 255.255.255.0

ip route-cache policy

ip policy route-map P2P

ip local policy route-map P2P

ip default-gatway 192.168.100.254 (ASA inside)

ip classless

ip route 0.0.0.0 0.0.0.0 192.168.0.254

ip access-list extended P2P-ACL

permit ip host 192.168.0.25 host 192.168.1.12

ip sla enable reaction-alerts (not sure where from?)

route-map P2P permit 10

match ip address P2P-ACL

set ip next-hop 10.0.0.2 10.0.0.1

Labels:
0 Helpful
32 Replies 32

Go to solution
CT_Dude
Level 1
Level 1
In response to Peter Paluch

‎08-17-2010 08:04 AM

Got the riverbed to work in the end.

Think it had a session from the day before open and that is why it did not optimize traffic.

We where asked by the ISP to set the port to Speed 100 Duplex full.

Will sort out the access list as soon as I know everything is working as it should.

I must say Thanks allot to you.

You helped me allot!!!

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to CT_Dude

‎08-17-2010 08:13 AM

Cillie,

We where asked by the ISP to set the port to Speed 100 Duplex full.

Okay. Hopefully, the ISP also statically set his speed/duplex on his interface. Nevertheless, I would personally make an experiment: remove the speed and duplex setting from a port and see whether it has automatically negotiated the 100/fullduplex operation. If yes then it is better to leave it on autonegotiation. If a port without the static speed and duplex setting fails to link or if it links as 100/halfduplex then the static setting of speed/duplex is required as the ISP indicated.

I must say Thanks allot to you.
You helped me allot!!!

We did it together. You are welcome. Thank you too!

Best regards,

Peter

0 Helpful

Go to solution
CT_Dude
Level 1
Level 1
In response to Peter Paluch

‎08-17-2010 09:27 AM

We did have it on auto.

But then nothing wanted to communicate on the switches/P2P and Riverbed devices.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card