I have a 3560 running 12.2.25 with all interfaces in vlan 1 except G0/1 to 1 WAN circuit and G0/14 to different WAN circuit.
Interface vlan 1 has subnet A as primary, subnet B as secondary.
I want all traffic source subnet A to go to G0/1 and all traffic source subnet B to go to int G0/14.
Obviously I want any traffic with destination A or B to remain on site.
Using PBR applied to vlan 1, I can get the WAN traffic to go to the relevant interface, but I can't get the local traffic to stay local.
This is because the 3560 does not support deny actions in route-maps (nor does the 3750), so I can'g get traffic destined for A or B to avoid the policy route map.
This must be a common requirement - any assistance appreciated.
Many thanks - this is driving me nuts
P.S ignore the config guide for 12.2.25 PBR, it is lying. 12.2.44 tells a truer story
You mean to say route-map CABLE_WIRELESS deny 10 command is not supported on the switch.
Why don't you try this -
route-map CABLE_WIRELESS permit 10
description *** Source address ACL 110 to C&W VSAT ***
match ip address 110
set ip next-hop 22.214.171.124
route-map CABLE_WIRELESS permit 20
description *** Source address ACL 120 BT VSAT ***
match ip address 120
set ip next-hop 126.96.36.199
access-list 110 deny ip any 10.10.10.0 0.0.0.255
access-list 110 deny ip any 10.10.20.0 0.0.0.255
access-list 110 permit ip 10.10.10.0 0.0.0.255 any
access-list 120 deny ip any 10.10.10.0 0.0.0.255
access-list 120 deny ip any 10.10.20.0 0.0.0.255
access-list 120 permit ip 10.10.20.0 0.0.0.255 any