What type of wireless do you have? If you have Cisco Controllers you should
consider a guest controller in a DMZ or Public internet and then you can
anchor the guest VLAN's to that controller and not have to worry about the
users hoping in the private network.
Andy
-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of Ian
Blaney
Sent: Friday, September 27, 2013 2:02 PM
To: Cisco certification
Subject: Routing between VRFs
Hello Guys
I would like our Guest wireless to have a different default gateway to all
other networks. This is normally easily done using PBR but this is not
supported on the Nexus 5K which we are using. I believe it is supported in
Version 6.x with the enterprise license but unfortunately we have version
5.x and only the base license.
The other idea I had is putting the Guest wireless in its own VRF similar to
the link below.
http://www.cisco.com/en/US/tech/tk436/tk832/technologies_configuration_examp
le09186a0080231a3e.shtml#global
Could anyone tell me if this would work on the Nexus 5K.
Basically SVI vlan7 should use 172.16.2.101 as its default gateway and all
others should use 172.16.2.100. I am not sure of the routing between the vrf
and global routing table.
vrf context GUEST-WIRELESS
ip route 0.0.0.0 0.0.0.0 vlan 2 172.16.2.101
interface Vlan7
vrf member GUEST-WIRELESS
ip address 172.16.7.3/24
ip dhcp relay address 172.16.100.167
ip route 172.16.7.0/24 vlan7
ip route 0.0.0.0 0.0.0.0 172.16.2.100
Many thanks
Ian
Blogs and organic groups at http://www.ccie.net
Received on Fri Sep 27 2013 - 16:15:02 ART
This archive was generated by hypermail 2.2.0 : Tue Oct 01 2013 - 06:36:35 ART