per vlan routing on 6509

Answered Question
Sep 9th, 2008

Can someone tell me if I can have seperate routes setup on a per vlan basis on a 6509 running in native mode (12.2 IOS). I'd like to setup something like "virtual router 1" for vlan 2 and "virtual router 2" for vlan 3..etc..

TIA

I have this problem too.
0 votes
Correct Answer by simontibbitts about 5 years 7 months ago

Hi.

You are right, MPLS VPNs are a bit too much if thats all you need.

PBR is probably your best bet. It would look something like this:

interface VLAN2

ip policy route-map VLAN2_MAP

!

interface VLAN3

ip policy route-map VLAN3_MAP

!

route-map VLAN2_MAP permit 10

set ip next-hop 10.1.1.1

!

route-map VLAN3_MAP permit 10

set ip next-hop 10.1.1.2

The example config above will send everything in VLAN2 to next hop 10.1.1.1 and everything in VLAN3 to next hop 10.1.1.2, hope that's the kind of thing you are after?

Simon

  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 5 (1 ratings)
simontibbitts Tue, 09/09/2008 - 07:58

Hi.

MPLS VPNs will do this if your hardware supports it. It will give you a different VRF for each VLAN.

Perhaps a simpler setup for you would be policy routing if you just want each VLAN to be routed differently?

Simon

softwareadmin@k... Tue, 09/09/2008 - 10:01

Hi Simon,

What I've done is cosolidate a stack of switches (a few for our production environment and one for our coporate side) into the one core 6509. Each side, corporate and production, have a seperate firewall and internet connection. On this 6509 I've configured vlans for corp and prod and an SVI for both. I'd like to plug in my devices and point them to the SVI of their vlan as a gateway. Then let the 6509 route the traffic out the right firewall.

So it sounds like the policy routing is what I should be focusing on, correct?

As for the MPLS VPNs, I think that will be more than I need. I looked at them some, but do not need a VPN for this traffic.

BTW - I've got:

6509

-sup720

-6748-GE-TX's

Thanks

Correct Answer
simontibbitts Tue, 09/09/2008 - 10:37

Hi.

You are right, MPLS VPNs are a bit too much if thats all you need.

PBR is probably your best bet. It would look something like this:

interface VLAN2

ip policy route-map VLAN2_MAP

!

interface VLAN3

ip policy route-map VLAN3_MAP

!

route-map VLAN2_MAP permit 10

set ip next-hop 10.1.1.1

!

route-map VLAN3_MAP permit 10

set ip next-hop 10.1.1.2

The example config above will send everything in VLAN2 to next hop 10.1.1.1 and everything in VLAN3 to next hop 10.1.1.2, hope that's the kind of thing you are after?

Simon

Actions

Login or Register to take actions

This Discussion

Posted September 9, 2008 at 7:23 AM
Stats:
Replies:3 Avg. Rating:5
Views:384 Votes:0
Shares:0
Tags: No tags.

Discussions Leaderboard

Rank Username Points
1 15,007
2 8,150
3 7,730
4 7,083
5 6,742
Rank Username Points
155
77
69
65
45