Re: Local policy routing

From: Derek P (rizacer@gmail.com)
Date: Fri Feb 23 2007 - 22:23:36 ART

• Next message: Michael Zuo: "RE: IEWB-RS Technology Labs - 3550 QOS"
• Previous message: Antonio Soares: "RE: Location of Arp types on the Documentation website."
• Maybe in reply to: Derek P: "Local policy routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thanks Brian,

This really clears this up. Just because its forcing the traffic through the
loopback doest mean the source IP gets changed. All this time I thought it
would have.

DP

On 2/23/07, Brian Dennis <bdennis@internetworkexpert.com> wrote:
>
>
> Actually your route-map is working as expected. The set interface does
> not
> set the source IP address. It only sets the interface the packet is
> forwarded out of. You may want to add NAT to your solution to actually
> change the source IP address.
>
> --
>
> Brian Dennis, CCIE4 #2210 (R&S/ISP-Dial/Security/SP)
> bdennis@internetworkexpert.com
>
> Internetwork Expert, Inc.
> http://www.InternetworkExpert.com
> Toll Free: 877-224-8987
> Direct: 775-745-6404 (Outside the US and Canada)
>
> On 2/23/07 5:03 PM, "Derek P" <rizacer@gmail.com> wrote:
>
> > Can someone confirm this config is correct? My routers dont seem to want
> to
> > local policy-route correctly.It shows its getting matched in the policy
> but
> > its not correctly swapping the source IP. Any help is greatly
> appreciated on
> > this.
> >
> > !
> > interface Loopback0
> > ip address 1.1.1.1 255.255.255.0
> > !
> > interface Ethernet0
> > ip address 132.1.100.1 255.255.255.0
> > !
> > ip local policy route-map LOCAL_POLICY
> > !
> > route-map LOCAL_POLICY permit 10
> > set interface Loopback0
> > !
> >
> >
> > R1#deb ip pol
> > Policy routing debugging is on
> > R1#pi 132.1.100.2 re 2
> >
> > Type escape sequence to abort.
> > Sending 2, 100-byte ICMP Echos to 132.1.100.2, timeout is 2 seconds:
> > U
> > *Mar 1 00:24:45.031: IP: s=132.1.100.1 (local), d=132.1.100.2, len 100,
> > policy match
> > *Mar 1 00:24:45.035: IP: route map LOCAL_POLICY, item 10, permit
> > *Mar 1 00:24:45.039: IP: s=132.1.100.1 (local), d=132.1.100.2(Loopback0),
> > len 100, policy routed
> > *Mar 1 00:24:45.043: IP: local to Loopback0 132.1.100.2
> > *Mar 1 00:24:45.067: IP: s=132.1.100.1 (local), d=132.1.100.2, len 100,
> > policy match
> > *Mar 1 00:24:45.071: IP: route map LOCAL_POLICY, item 10, permit
> > *Mar 1 00:24:45.071: IP: s=132.1.100.1 (local), d=132.1.100.2(Loopback0),
> > len 100, policy routed
> > *Mar 1 00:24:45.075: IP: local to Loopback0 132.1.100.2.
> > Success rate is 0 percent (0/2)
> > R1#
> > R1#conf t
> > Enter configuration commands, one per line. End with CNTL/Z.
> > R1(config)#ip tcp synwait-time 5
> > R1(config)#do tel 132.1.100.2
> > Trying 132.1.100.2 ...
> > % Destination unreachable; gateway or host down
> >
> > R1(config)#
> > *Mar 1 00:25:43.923: IP: s=132.1.100.1 (local), d=132.1.100.2, len 44,
> > policy match
> > *Mar 1 00:25:43.927: IP: route map LOCAL_POLICY, item 10, permit
> > *Mar 1 00:25:43.927: IP: s=132.1.100.1 (local), d=132.1.100.2(Loopback0),
> > len 44, policy routed
> > *Mar 1 00:25:43.931: IP: local to Loopback0 132.1.100.2
> > R1(config)#
> >
> >
> > DP
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html

• Next message: Michael Zuo: "RE: IEWB-RS Technology Labs - 3550 QOS"
• Previous message: Antonio Soares: "RE: Location of Arp types on the Documentation website."
• Maybe in reply to: Derek P: "Local policy routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Mar 01 2007 - 07:38:48 ART