11-08-2017 05:08 PM - edited 03-08-2019 12:40 PM
Hi Everyone,
i have a network that looks somehow like attached. I have multiple hosts connected to Core switch and core switch is by default forwarding all traffic to R2. static route for that is already there in switch which we can not change.
I want that only one client's traffic to be sent to R1. the host IP is 192.168.4.100. we don't want that any other host of 192.168 subnet should talk to R1 except 192.168.4.100.
I'm trying below configuration on simulation but when i implement it, it sends all traffic to R1.
ip access-list extended test
deny ip 192.168.0.0 0.0.255.255 any
permit ip host 192.168.4.100 any
permit ip any any
route-map net_access permit 10
match ip address test
set ip next-hop 192.168.1.245
int gi 1/1 (Interface going to R1 & R2) - Please confirm which interface i should use. either SVI of each VLAN, Incoming trunk/access or outgoing trunk/access
ip policy route-map net_access
11-08-2017 05:23 PM
11-09-2017 03:33 AM - edited 11-09-2017 03:34 AM
Hello
ip access-list extended test
permit ip host 192.168.4.100 any
route-map net_access permit 10
match ip address test
set ip next-hop 192.168.1.245
Int xx
description LAn interface
ip policy route-map net_acces
and/or
Int xx
description IP Host 100
ip policy route-map net_access <--- only applicable if not applied to lan interface
switchport protected
int x/x
description port to R1
switchport protected
res
Paul
07-01-2020 09:25 AM
With PBR do I need a reverse route for the return traffic?
For example I want traffic from host 10.245.20.39 destined to 173.219.143.100 to have a next hop of 4.30.164.150, and then I need reply traffic from 173.219.143.100 to take a specific route to make it back to 10.245.20.39. To do this can I have two lines in the ACL used to identify the traffic used for the PBR?
Is there a way to make a default PBR for only one host? If I wanted 10.245.20.39 going to any non RFC1918 IP (public internet) go to a specific next hop can I do that and still have host 10.245.20.39 follow the normal routing table for all RFC1918 IP's?
Thank you.
07-01-2020 07:21 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide