Hello,
We have a costumer whom has a cisco WS-C4507R+E as the follow information:
Image Name: cat4500es8-universalk9.SPA.03.08.03.E.152-4.E3.tar
Software: IOS XE
Release Number: 3.8.3E
Platform Name: CAT4500E-SUP8L-E
Feature Set/Supervisor(NX-OS specific): UNIVERSAL CRYPTO (LAN BASE) |
So he decided to implement PBR on this WS-C4507. He did the access-list to capture traffic and the route-map to set the next-hop for that traffic, but the problem is when he tries to apply the "policy routing" on a "vlan interface" that is the access switch inbound traffic, the command is not recognized by the switch, there is no "policy route-map" entry after the "ip" command in interface configuration mode.
Here is an example of the configuration being applied:
!! Config interfaces
!
int vlan 10
description # WAN PRI #
ip add 10.10.10.253 255.255.255.0
!
int vlan 11
ip add 10.10.11.253 255.255.255.0
description # WAN SEC #
!
int vlan 55
description # LAN 55 #
ip add 10.10.55.254 255.255.255.0
!
int vlan 66
description # LAN 66 #
ip add 10.10.66.254 255.255.255.0
!
int vlan 77
description # LAN 77 #
ip add 10.10.77.254 255.255.255.0
! |
!! Default gateway
!
ip route 0.0.0.0 0.0.0.0 10.10.10.254 |
!! Access-list and route-map (PRB)
!
ip access-list extended ACL-LAN77
permit ip 10.10.77.0 0.0.0.255 any
!
route-map PBR-WAN-SEC permit 10
match ip address ACL-LAN77
set ip next-hop 10.10.11.254 |
The output message when he tries to implement the command:
WS-C4507(config-if)#int vlan 77
WS-C4507(config-if)#ip policy route-map PBR-WAN-SEC
^
% Invalid input detected at '^' marker. |
I researched the "cisco feature navigator" (http://cfn.cloudapps.cisco.com/ITDIT/CFN/jsp/index.jsp) and saw that this device (CAT4500E-SUP8L-E) with the firmware version (IOS XE 3.8.3E) that is in use and with the current license (UNIVERSAL CRYPTO LAN BASE), support this feature.
Could someone help me clarify what is happening or will it be necessary to open a TAC?
Thank you in advance.
