Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Source-Routing

Status
Not open for further replies.
GM2005

GM2005

ISP
Joined
Sep 28, 2005
Messages
118
Location
GB
I am a bit of a newbie so please humour me. I need to direct traffic from specific VLANs, so that it exits on specific subinterfaces on a Router. For example, traffic entering the router from VLAN 5 to exit the router on subinterface 0.5

I have not configured this before and can find no methodology or direction on CCO. I am not using Token Ring, just Ethernet.

Can anyone help? All I need is a link to the appropriate information and I will work it out, but an example would be gratefully recieved.

 
Sort by date Sort by votes
Policy based routing (PBR) might be of interest to you. Here is a link from Cisco about implementing it


Incidentally since IOS 12.4, you can combine PBR with object tracking which has really enhanced this feature. If you're using IOS 12.4, you may want to consider this. The following Cisco link explains what you can do now with PBT and object tracking.


HTH
 
Upvote 0 Downvote
Hi

Thanks for the links. I thought I had it cracked then but here is where the problem lies:

I have a 7206VXR interconnected to an MPLS cloud. Customers attached to the cloud are routing back to us over the cloud for internet access (we are a small ISP) Lets call these customers A, B and C. So far, so good.

(Due to the implementation we are using DLCI's on subinterfaces of the 7206 to address the customers sites. Still no problem.)

We also have remote workers who want to VPN over the internet, into us and out into the MPLS cloud to the remote sites A, B and C. My problem is that these customers are using over lapping IP address ranges. Once they terminate their VPN's at our site (on a dedicated firewall,) we will forward their traffic through the MPLS cloud. However, once they are inside our network they will potentially have duplicate addresses.

My plan was to put each incoming VPN customer into a seperate VLAN from the Firewall to a Switch and map these VLANs to an outgoing subinterface on the router. What I am having trouble with is the method to tell the router that if traffic comes in from VLAN 5, send it out of subinterface 1/1.5. If I use PBR I will need to match on IP address of the VLAN.
 
Upvote 0 Downvote
Hmm well if these customers are on their own, unique VLAN wouldn't it be enough to place PBR on their ingress interface but not match anything, i.e. just have a set statement pointing to int 1/1.5

Something like

interface vlan 5
ip policy route-map vpn

route-map vpn permit 10
set interface fa1/1.5

Basically with the above route-map you are forcing anyone that enters your network via vlan 5 to be pbr'ed to int fa1/1.5 regardless of IP address.

Would that work for you?
 
Upvote 0 Downvote
Sounds good to me. I'll give it a try and let you know. Thanks for taking the trouble kiscoKid, your a star.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Pankaj88
  • Locked
  • Question Question
BGP Routing Clarification
Replies
0
Views
514
Pankaj88
Pankaj88
mikey789
  • Locked
  • Question Question
Can 4000-M Routing VLANs ?
Replies
0
Views
259
mikey789
mikey789
paramjotsingh
  • Locked
  • Question Question
InterVALN Routing in Switch 3850
Replies
4
Views
446
paramjotsingh
paramjotsingh
jmkelly
  • Locked
  • Question Question
Dynamic routing protocols for catalyst 3850 switches
Replies
4
Views
694
ADB100
ADB100
mutantx
  • Locked
  • Question Question
CiscoVG202 and Vertical PBX - routing calls
Replies
0
Views
250
mutantx
mutantx

Part and Inventory Search

Sponsor

Back
Top