urgent help in pbr

binoyjosephstanly · ‎08-15-2008

Dear all

i have 2 offices, from office A i have 2 point to point leased lines(128kbps each)

connecting to office B.

office A ------------------- Office B

192.168.1.0/24 ------------------ 192.168.3.0/24

i have not bundled the 2 serial lines i had put 2 routing entries in office A router

ip route 192.168.3.0 255.255.255.0 Serial0/0/0

ip route 192.168.3.0 255.255.255.0 Serial0/0/1

from office B router also i have the proper routing entries and it is working fine.

now my requirement is i have got an internet leased line and i've 6 public ip addresses as well, from office A i need to publish one server i tried configuring

policy based routing on the same router but it is not working can anybody help me in this issue.

i will post the configuration file please have a look into it.i will rate all the suggestions

thanks & regards

Binoy

Giuseppe Larosa · ‎08-15-2008

Hello Binoy,

in your scenario I don't think you need PBR.

just use extended ACL to permit only private-to-private or public to public traffic.

In fact,

when going to private you will go to siteB

when going to the internet you will go via the interface that provides the default-route

use ACLs to avoid sending packets with private RFC 1918 addresses to the internet

access-list 121 deny ip 192.168.0.0 0.0.255.255 any

access-list 121 permit ip 85.154.246.144 0.0.0.7 any

access-list 121 permit ip 85.154.246.180 0.0.0.3 any

int ser0/10

ip access-group 121 out

Hope to help

Giuseppe