Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1195
Views
0
Helpful
4
Replies

VRF routing

davegibelli
Level 3
Level 3

‎02-04-2015 02:06 AM - edited ‎03-07-2019 10:30 PM

I need to get packets coming from a server that is connected via an SVI that is in a VRF to/from servers that are connected to SVI's that are in the global space.

See the diagram vrf.png

Routing outside of the 6509 works but how do we route to connected interfaces without using a router on a stick or connecting two physical interfaces together as neither of these two options are elegant.

The main problem is that I get errors if I try:

3750(config-if)# ip route vrf Cust1 10.0.10.0 255.255.255.0 10.0.10.1 global
%Invalid next hop address (it's this router)

3750(config)# ip route vrf Cust1 10.0.10.0 255.255.255.0 0.0.0.0 global - although this command is accepted it does not work.

3750(config)# ip route vrf Cust1 10.0.10.0 255.255.255.0 vlan4
% For VPN routes, must specify a next hop IP address if not a point-to-point interface

Any ideas?

Labels:
Preview file
13 KB
0 Helpful
4 Replies 4

Cisco Freak
Level 9
Level 9

‎02-04-2015 03:04 AM

Hi,

Try this out:

ip route vrf Cust1 10.0.10.0 255.255.255.0 vlan4  10.0.10.1
ip route 10.118.5.150 255.255.255.0 vlan100  

 

CF

0 Helpful

davegibelli
Level 3
Level 3
In response to Cisco Freak

‎02-05-2015 06:18 AM

I tried that, the switch accepts the command but it does not work. No packets arrive at the destination. See the debug below.

 

Feb  5 13:54:22.710: IP: tableid=1, s=10.0.2.75 (Vlan2), d=10.0.10.100 (Vlan4), routed via FIB
Feb  5 13:54:22.710: IP: s=10.0.2.75 (Vlan2), d=10.0.10.100, len 84, rcvd 4
Feb  5 13:54:22.710: IP: s=10.0.2.75 (Vlan2), d=10.0.10.100, len 84, stop process pak for forus packet
Feb  5 13:54:23.834: IP: s=10.0.2.75 (Vlan2), d=10.0.10.100, len 84, input feature, MCI Check(63), rtype 0, forus FALSE, sendself FALSE, mtu 0
Feb  5 13:54:23.834: IP: tableid=1, s=10.0.2.75 (Vlan2), d=10.0.10.100 (Vlan4), routed via FIB
Feb  5 13:54:23.834: IP: s=10.0.2.75 (Vlan2), d=10.0.10.100, len 84, rcvd 4
Feb  5 13:54:23.834: IP: s=10.0.2.75 (Vlan2), d=10.0.10.100, len 84, stop process pak for forus packet

 

0 Helpful

Cisco Freak
Level 9
Level 9
In response to davegibelli

‎02-05-2015 07:00 AM

Hi,

Why the source of the packet is 10.0.2.75?  It should be from 10.118.5.150 255.255.255.0..right?

Are you not trying to route between 10.118.5.150 255.255.255.0 and 10.0.10.0 255.255.255.0 ?

CF

0 Helpful

davegibelli
Level 3
Level 3
In response to Cisco Freak

‎02-05-2015 11:41 PM

Sorry I realised soon after posting that I am confusing you. In the real world I am using a 6509 by for testing I am using a 3750 in a lab.

I have decided to use a /30 link using physical interfaces but even this will not work on the 6509 VSS but work very well on a 3750...I think I need to open a TAC case!

0 Helpful
Customers Also Viewed These Support Documents