10-23-2008 09:11 AM - edited 03-06-2019 02:06 AM
Hi,
I have a problem with PBR.
I have two ADSLs in the same router and I what to divide traffic.
To the ISP1 I will send the traffic to the internet and to the ISP2 I will send the vpn traffic (remote vpn).
The remote vpn gateway is the ASA that I have connected to the C2811.
All the traffic to the Internet will reach the C2811 ânatedâ by the ASA.
There is any problem with the vpn and pbr?
Who can I do this?
Can some one help me?
Thanks in advance,
Rui Capao
10-26-2008 08:01 PM
u can do it
but u need to make sure that vpn traffic has beeen configured to send the vpn traffic to ISP2 as well
10-27-2008 03:19 AM
be inspired from this:
interface ethernet 0
ip policy route-map test
!
access-list 101 permit tcp any any eq 80
access-list 102 permit ip any 192.168.1.0 0.0.0.255 (this is the remote LAN used with vpn)
!
route-map test permit 10
match ip address 101
set ip next-hop 172.16.87.254
!
route-map test permit 20
match ip address 102
set ip next-hop 172.16.88.254
10-27-2008 04:13 PM
hi guys
i just wanna add small comment
OUSSAMA config very good
but there is an issue
as route map match traffic sequencilly based on the map sequence number
here if u have http traffic meant to go over vpn it will go over the other ISP not the VPN one
becuase it will be match on the map with seq number 10
what u could do simple chnage to make it more spicific
route-map test permit 10
match ip address 102
set ip next-hop 172.16.88.254
route-map test permit 20
match ip address 101
set ip next-hop 172.16.87.25
good luck
if helpful Rate
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide