Problems with PBR.

Unanswered Question
Oct 23rd, 2008

Hi,

I have a problem with PBR.

I have two ADSLs in the same router and I what to divide traffic.

To the ISP1 I will send the traffic to the internet and to the ISP2 I will send the vpn traffic (remote vpn).

The remote vpn gateway is the ASA that I have connected to the C2811.

All the traffic to the Internet will reach the C2811 “nated” by the ASA.

There is any problem with the vpn and pbr?

Who can I do this?

Can some one help me?

Thanks in advance,

Rui Capao

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marwan ALshawi Sun, 10/26/2008 - 20:01

u can do it

but u need to make sure that vpn traffic has beeen configured to send the vpn traffic to ISP2 as well

ohassairi Mon, 10/27/2008 - 03:19

be inspired from this:

interface ethernet 0

ip policy route-map test

!

access-list 101 permit tcp any any eq 80

access-list 102 permit ip any 192.168.1.0 0.0.0.255 (this is the remote LAN used with vpn)

!

route-map test permit 10

match ip address 101

set ip next-hop 172.16.87.254

!

route-map test permit 20

match ip address 102

set ip next-hop 172.16.88.254

Marwan ALshawi Mon, 10/27/2008 - 16:13

hi guys

i just wanna add small comment

OUSSAMA config very good

but there is an issue

as route map match traffic sequencilly based on the map sequence number

here if u have http traffic meant to go over vpn it will go over the other ISP not the VPN one

becuase it will be match on the map with seq number 10

what u could do simple chnage to make it more spicific

route-map test permit 10

match ip address 102

set ip next-hop 172.16.88.254

route-map test permit 20

match ip address 101

set ip next-hop 172.16.87.25

good luck

if helpful Rate

Actions

This Discussion