Re: SVI PBR

From: Venkatesh Venkatesh (kvpalani@gmail.com)
Date: Tue Aug 29 2006 - 22:20:23 ART

• Next message: Victor Cappuccio: "RE: SVI PBR"
• Previous message: joegagznos@comcast.net: "Test Email"
• Maybe in reply to: Tim Gregory: "SVI PBR"
• Next in thread: Victor Cappuccio: "RE: SVI PBR"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Tim,
Try specific source and destination IP addresses ...rather than any or
any/any. if you wish send us the full config.

- Venkatesh

On 8/30/06, Tim Gregory <tgregory@lincoln.ac.uk> wrote:
>
> tried any any
>
> honestly, i can;t work it out....
>
> the only thing which gets policy routed is broadcast traffic.... I can;t
> work it out..
>
>
>
> ________________________________
>
> From: Sean C. [mailto:Upp_and_Upp@hotmail.com]
> Sent: Wed 30/08/2006 01:24
> To: Tim Gregory; ccielab@groupstudy.com
> Subject: Re: SVI PBR
>
>
>
> Hi Tim,
>
> For grins, change the ACLs to:
> ip access-list extended route2blue
> permit icmp any any
> permit ip any any
>
> and see if they get PBR'd. If 'any any' doesn't work, something strange
> going on....
>
> HTH,
> Sean
> ----- Original Message -----
> From: "Tim Gregory" <tgregory@lincoln.ac.uk>
> To: <ccielab@groupstudy.com>
> Sent: Tuesday, August 29, 2006 1:51 PM
> Subject: RE: SVI PBR
>
>
> For some reason, the only traffic which gets policy routed is broadcast
> traffic originating from the matched subnet... Everything else is routed
> normally.. Very confused..
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> Tim Gregory
> Sent: 29 August 2006 15:57
> To: ccielab@groupstudy.com
> Subject: SVI PBR
>
> Hi Guys..
>
> When you configure PBR on a SVI, does it behave normally?
>
> Basically I've got a scenario where I need to take some traffic coming
> from a particular subnet and force it down a gre tunnel, so I've
> configured the interface like this..
>
> interface Vlan24
> ip address 10.1.24.129 255.255.255.128
> ip helper-address 194.80.56.107
> ip route-cache policy
> ip policy route-map force-tunnel
>
> route-map force-tunnel permit 10
> match ip address route2blue
> set ip next-hop 10.254.253.1
>
> ip access-list extended route2blue
> permit icmp 10.1.24.128 0.0.0.127 any
> permit ip 10.1.24.128 0.0.0.127 any
>
>
>
>
> But traffic still follows the normal ip routing table path, I can't for
> the life of my figure out why its not being routed down the next hop of
> 10.254.253.1.... Im sure its something very basic :[
>
> Thanks...
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Victor Cappuccio: "RE: SVI PBR"
• Previous message: joegagznos@comcast.net: "Test Email"
• Maybe in reply to: Tim Gregory: "SVI PBR"
• Next in thread: Victor Cappuccio: "RE: SVI PBR"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Sep 01 2006 - 15:41:59 ART