10-23-2008 09:11 AM - edited 03-06-2019 02:06 AM
Hi,
I have a problem with PBR.
I have two ADSLs in the same router and I what to divide traffic.
To the ISP1 I will send the traffic to the internet and to the ISP2 I will send the vpn traffic (remote vpn).
The remote vpn gateway is the ASA that I have connected to the C2811.
All the traffic to the Internet will reach the C2811 ânatedâ by the ASA.
There is any problem with the vpn and pbr?
Who can I do this?
Can some one help me?
Thanks in advance,
Rui Capao
10-26-2008 08:01 PM
u can do it
but u need to make sure that vpn traffic has beeen configured to send the vpn traffic to ISP2 as well
10-27-2008 03:19 AM
be inspired from this:
interface ethernet 0
ip policy route-map test
!
access-list 101 permit tcp any any eq 80
access-list 102 permit ip any 192.168.1.0 0.0.0.255 (this is the remote LAN used with vpn)
!
route-map test permit 10
match ip address 101
set ip next-hop 172.16.87.254
!
route-map test permit 20
match ip address 102
set ip next-hop 172.16.88.254
10-27-2008 04:13 PM
hi guys
i just wanna add small comment
OUSSAMA config very good
but there is an issue
as route map match traffic sequencilly based on the map sequence number
here if u have http traffic meant to go over vpn it will go over the other ISP not the VPN one
becuase it will be match on the map with seq number 10
what u could do simple chnage to make it more spicific
route-map test permit 10
match ip address 102
set ip next-hop 172.16.88.254
route-map test permit 20
match ip address 101
set ip next-hop 172.16.87.25
good luck
if helpful Rate
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: