next-hop

Answered Question
Jul 9th, 2008
User Badges:

All traffic are via RTR-2. I have a specific hosts need to route via RTR-1. I would say, critical applications.


example, host 192.l68.200.1 should route via RTR-1.


i used route-maps command in Inside-Sw1/2 but won't work...


access-list 10 permit 192.168.200.1

route-map hosts permit 10

match ip address 10

set ip next-hop 10.10.10.1


i applied this route-map into the vlan 200 ...






Attachment: 
Correct Answer by a.alekseev about 8 years 9 months ago

there are no matches...

maybe the soure ip address was changed by ASA?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Gerard Gacusan Thu, 07/10/2008 - 10:51
User Badges:

I did the command line below in RTR-2. Host 192.168.200.1 is still using path to RTR-2...suppose the next-hop is RTR-1 10.10.1.1.


Any idea?



RTR-2:


interface FastEthernet0/0

ip address 10.10.1.2 255.255.255.0

ip policy route-map test

duplex auto

speed auto



access-list 12 permit 192.168.200.1


route-map test permit 10

match ip address 12

set ip next-hop 10.10.1.1

a.alekseev Thu, 07/10/2008 - 11:09
User Badges:
  • Gold, 750 points or more

do you have matches in access-list?

sh access-list

Correct Answer
a.alekseev Thu, 07/10/2008 - 11:26
User Badges:
  • Gold, 750 points or more

there are no matches...

maybe the soure ip address was changed by ASA?

Gerard Gacusan Fri, 07/11/2008 - 06:11
User Badges:

I found it and works now. I remember, this host 192.168.200.1 is inside of the network and the PBR router is on the outside. Therefore, add static NAT on the Firewall of 192.168.200.1 to public address x.x.x.x.


and on PBR router, change the following:


access-list 12 permit x.x.x.x

set ip next-hop 10.10.10.1


thanks


Actions

This Discussion