policybased routing on SVI and C3750 - error when enabling on in

mbilgrav · ‎09-26-2013

Hey Forum !

can you crack this one ?

Senario:

- two internet gateways located at one central site. internet-gateway#1 is 0.0.0.0 route i routetable, and internet-gateway#2

i want to use for the remote users - hence PBR to it.

- Central site has MPLS WAN with two remote-sites.

- i want users at the remote sites to use internet-gateway#2 via PBR

Problem:

on a remotesite:

I create the ACL to match subnet of remote site -ok

I create the route-map with recursive next hop statement- ok

(next hop is the recursive on the central site SVI towards internet-gateway#2)

I enable PBR on SVI interface - not ok !

when I issue the "interface vlanxxx" cmd "ip policy route-map pbr"

the log shows:

%PLATFORM_PBR-3-UNSUPPORTED_RMAP: Route-map pbr not supported for Policy-Based Routing

the platform is WS-C3750X-12S-E running c3750e-universalk9-mz.122-58.SE2 with ipservices license

the SDM has been set to "desktop IPv4 and IPv6 routing" and I see

number of IPv4 policy based routing aces: 0.25K

in the "show SDM prefer" output

i have also enabled fastswitching PBR with the interface command "ip route-cache policy"

the commands are present i running-config, but i get the log output, and I can not ping and hit the PBR match to

internet-gateway#2, so it seems like it is not working ...

What am I missing ?

and what good debug commands are available to verify operations ?

dc-csa-blr · ‎09-26-2013

Hi Mbilgrav,

You must configure "sdm prefer routing" instead of desktop.

command to be configure as bellow :

config mode

sdm prefer routing

wr

reload

Then ur PBR will work properly...

Cheers!!!

HTH.

mbilgrav · ‎09-26-2013

I am preety sure this has notthing to do with the SDM template.

If I choose :

'

3750-12S#sho sdm prefer routing

"desktop routing" template:

The selected template optimizes the resources in

the switch to support this level of features for

8 routed interfaces and 1024 VLANs.

number of unicast mac addresses: 3K

number of IPv4 IGMP groups + multicast routes: 1K

number of IPv4 unicast routes: 11K

number of directly-connected IPv4 hosts: 3K

number of indirect IPv4 routes: 8K

number of IPv4 policy based routing aces: 0.5K

number of IPv4/MAC qos aces: 0.5K

number of IPv4/MAC security aces: 1K

it still says "desktop"

the CCO docs states that ipv4 PBR is supported in dual stack to, but only for ipv4

So there is no real difference between routing and dual routing

I am looking into the syslog meaning way of thinking:

Error Message PLATFORM_PBR-3-UNSUPPORTED_RMAP: Route-map [chars] not supported for Policy-Based Routing

Explanation This message means that the route-map attached to an interface for policy routing contains an action that is not supported on this platform. This is a hardware limitation. [chars] is the route-map.

Recommended Action Reconfigure the route-map to use permit entries and set ip next-hop actions only.

So i am testing that if i leave out the keyword "recursive" and have a plain set ip next hop 1.2.3.4

This acutally are accepted !

So I am leaning towards this is platform specific for the 3750, and that it doesnt support these types of PBR

This is not clear in the IOS doc, or the platform doc ... so far to me anyway

But if its true I can not use PBR for my purpose ... *grrrr*

policybased routing on SVI and C3750 - error when enabling on interface