Re: Local policy routing

From: Brian Dennis (bdennis@internetworkexpert.com)
Date: Fri Feb 23 2007 - 22:17:47 ART

• Next message: Antonio Soares: "RE: Location of Arp types on the Documentation website."
• Previous message: Derek P: "Local policy routing"
• Maybe in reply to: Derek P: "Local policy routing"
• Next in thread: Derek P: "Re: Local policy routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Actually your route-map is working as expected. The set interface does not
set the source IP address. It only sets the interface the packet is
forwarded out of. You may want to add NAT to your solution to actually
change the source IP address.

-- 
Brian Dennis, CCIE4 #2210 (R&S/ISP-Dial/Security/SP)
bdennis@internetworkexpert.com
 
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Direct: 775-745-6404 (Outside the US and Canada)
On 2/23/07 5:03 PM, "Derek P" <rizacer@gmail.com> wrote:
> Can someone confirm this config is correct? My routers dont seem to want to
> local policy-route correctly.It shows its getting matched in the policy but
> its not correctly swapping the source IP. Any help is greatly appreciated on
> this.
> 
> !
> interface Loopback0
>  ip address 1.1.1.1 255.255.255.0
> !
> interface Ethernet0
>  ip address 132.1.100.1 255.255.255.0
> !
> ip local policy route-map LOCAL_POLICY
> !
> route-map LOCAL_POLICY permit 10
>  set interface Loopback0
> !
> 
> 
> R1#deb ip pol
> Policy routing debugging is on
> R1#pi 132.1.100.2 re 2
> 
> Type escape sequence to abort.
> Sending 2, 100-byte ICMP Echos to 132.1.100.2, timeout is 2 seconds:
> U
> *Mar  1 00:24:45.031: IP: s=132.1.100.1 (local), d=132.1.100.2, len 100,
> policy match
> *Mar  1 00:24:45.035: IP: route map LOCAL_POLICY, item 10, permit
> *Mar  1 00:24:45.039: IP: s=132.1.100.1 (local), d=132.1.100.2 (Loopback0),
> len 100, policy routed
> *Mar  1 00:24:45.043: IP: local to Loopback0 132.1.100.2
> *Mar  1 00:24:45.067: IP: s=132.1.100.1 (local), d=132.1.100.2, len 100,
> policy match
> *Mar  1 00:24:45.071: IP: route map LOCAL_POLICY, item 10, permit
> *Mar  1 00:24:45.071: IP: s=132.1.100.1 (local), d=132.1.100.2 (Loopback0),
> len 100, policy routed
> *Mar  1 00:24:45.075: IP: local to Loopback0 132.1.100.2.
> Success rate is 0 percent (0/2)
> R1#
> R1#conf t
> Enter configuration commands, one per line.  End with CNTL/Z.
> R1(config)#ip tcp synwait-time 5
> R1(config)#do tel 132.1.100.2
> Trying 132.1.100.2 ...
> % Destination unreachable; gateway or host down
> 
> R1(config)#
> *Mar  1 00:25:43.923: IP: s=132.1.100.1 (local), d=132.1.100.2, len 44,
> policy match
> *Mar  1 00:25:43.927: IP: route map LOCAL_POLICY, item 10, permit
> *Mar  1 00:25:43.927: IP: s=132.1.100.1 (local), d=132.1.100.2 (Loopback0),
> len 44, policy routed
> *Mar  1 00:25:43.931: IP: local to Loopback0 132.1.100.2
> R1(config)#
> 
> 
> DP
> 
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Antonio Soares: "RE: Location of Arp types on the Documentation website."
• Previous message: Derek P: "Local policy routing"
• Maybe in reply to: Derek P: "Local policy routing"
• Next in thread: Derek P: "Re: Local policy routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Mar 01 2007 - 07:38:48 ART