Home page logo
/

nanog logo nanog mailing list archives

Re: Anyone use Cisco Policy Routing?
From: "clarke" <nclarke () mindspring com>
Date: Fri, 14 Sep 2001 16:09:20 -0400


This does not sound like a problem with IOS, but more like a problem with
the configuration. Packets matching in your access
list will go to the designated next hop. Those failing to match will not be
discarded. These packets will take the course of the routing table.

Where are you trying to apply the route map? The interface or the routing
protocol? For what you're doing, you should apply the Route Map to an
incoming interface.

Try another matching statement with a lower precedence under your Policy.

Ex:

route-map Stephen_Policy permit 10
match ip address access_list_A
set ip next hop A.A.A.A

route-map Stephen_Policy permit 20
match ip address access_list_B
set ip next hop B.B.B.B

route-map Stephen_Policy permit 30
match ip address default_list
set ip next hop C.C.C.C

~ Clarke ~


----- Original Message -----
From: Stephen J. Wilcox <steve () opaltelecom co uk>
To: <nanog () merit edu>
Sent: Friday, September 14, 2001 1:28 PM
Subject: Anyone use Cisco Policy Routing?



Hi,
 I'm trying to setup a platform that will send different types of packets
over different routes, theres a good example of what I'm doing at

http://www.cisco.com/warp/public/cc/pd/ibsw/ibdlsw/prodlit/dlsw5_rg.htm

under 'Directing Traffic Flows with Policy Routing'

Basically, it doesnt work, I'm on IOS 12.0(3) and not sure if its a bug or
just me.

I'm using policy routing and route-maps to identify certain types of
traffic by tcp port number using extended access-lists and then change the
next-hop.

Whats happening is that it works okay until the above access-list makes a
match, after that all packets to that IP address regardless of port number
get sent via the modified next hop.


I'm wondering if I've got
a) an IOS bug

or if

b) I need to turn off some kind of route caching/cef that works at layer 3
altho I've disabled everything I could think of on the interface

Any thoughts?

Steve

--
Stephen J. Wilcox
IP Services Manager, Opal Telecom
http://www.opaltelecom.co.uk/
Tel: 0161 222 2000
Fax: 0161 222 2008




  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]