From: Sam Lai (LaiS@transnet.com)
Date: Mon Sep 11 2006 - 15:44:59 ART
Would you post the actual PBR configuration over here?
According to the error message, the traffic actually being normally forwarded. It tells that it did not match any criteria of the PBR applied to the Ethernet0/0 interface. In general, "permit" means to take action according to the PBR "set" command. And "deny" means to exclude such traffic from PBRd.
Also, PBR applied on a particular interface will only take effect on the traffic going thru that interface (incoming), but not traffic generated by the router locally. If it is actually what you want to do, then you should apply the PBR using "ip local policy .." global command.
Hope it helps.
Sam
Sam Lai, CCIE CISSP
TransNet Corporation
Mobile 908.413.5466
Email LaiS@TransNet.com <mailto:LaiS@TransNet.com>
________________________________
From: nobody@groupstudy.com on behalf of 2nd CCIE
Sent: Mon 9/11/2006 1:55 PM
To: ccielab@groupstudy.com; security@groupstudy.com
Subject: policy based routing
Folks ;
I am trying to configure PBR on my router , i want to drop the traffic coming from certain network ..this does not happen because i get the following error
1 01:31:26.737: IP: s=30.30.30.10 (Ethernet0/0), d=30.30.12.5, len 100, FI
B policy rejected(explicit route) - normal forwarding
the policy is applied on the Ethernet0/0 (30.30.30.5) where i am receiving packets from 30.30.30.10
does anyone know why the policy is rejected (explicit route ??) thing
---------------------------------
All-new Yahoo! Mail - Fire up a more powerful email and get things done faster.
This archive was generated by hypermail 2.1.4 : Sun Oct 01 2006 - 16:55:40 ART