Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
441
Views
0
Helpful
5
Replies

can't seem to get ip policy route-map working

l33h3lluk
Level 1
Level 1

‎11-14-2008 09:15 AM - edited ‎03-06-2019 02:29 AM

Hi,

Anyone see what I'm doing wrong here?

interface FastEthernet0/0

......

ip policy route-map mytestroute

....

access-list 164 permit tcp host 192.168.1.20 any

!

route-map mytestroute permit 10

match ip address 164

set interface Dialer0

!

route-map mytestroute permit 20

TIA,

Lee

Labels:
0 Helpful
5 Replies 5

Jon Marshall
Hall of Fame
Hall of Fame

‎11-14-2008 09:32 AM

Lee

Are you seeing matches on the access-list 164 ?

Perhaps you could post the full config ?

Jon

0 Helpful

l33h3lluk
Level 1
Level 1
In response to Jon Marshall

‎11-17-2008 03:22 AM

Hi Jon,

It occured to me over the weekend what the problem likely is.

Basically what I'm trying to do is,

I have 4 lines that are using CEF load balacing. I wanted to stop everyone except myself from using one of the lines so I can try and resolve a issue I am having with static PAT (port forwarding).

Basically what I had done is removed one of the default routes and a nat route-map for the line I want to stop people using then set up a IP policy on the FastEthernet0/0 interface for my IP address telling it to use that particular Dialer.

It occured to me the reason its not working is because there is no default route defined for the Dialer.

So I guess the question is how can you define a default route but only for a paricular IP address to use (myself). Is this possible?

TIA,

Lee

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to l33h3lluk

‎11-17-2008 03:43 AM

Lee

Is it not possible to use the "set ip next-hop ..." command rather than the "set interface" and then use the next-hop address of the upstream router to your dialer0 interface (if you know it !).

Jon

0 Helpful

l33h3lluk
Level 1
Level 1
In response to Jon Marshall

‎11-18-2008 08:25 AM

Hi Jon,

I'm not sure how this will help me as all lines connect to the same route at our ISP.

Lee

0 Helpful

l33h3lluk
Level 1
Level 1
In response to l33h3lluk

‎11-18-2008 08:47 AM

Would this work? before I break sommat (again lol)

If I put back my 4 default routes like so

ip route 0.0.0.0 0.0.0.0 Dialer0

ip route 0.0.0.0 0.0.0.0 Dialer1

ip route 0.0.0.0 0.0.0.0 Dialer2

ip route 0.0.0.0 0.0.0.0 Dialer3

but then only define 3 route maps like so

ip nat inside source route-map rmd0 interface Dialer0 overload

ip nat inside source route-map rmd1 interface Dialer1 overload

ip nat inside source route-map rmd2 interface Dialer2 overload

My ACL's are

access-list 6 permit 192.168.1.0 0.0.0.255

access-list 164 permit host 192.168.1.100 any

Route maps are

! rmd3 not used for now

route-map rmd3 permit 10

match ip address 6

match interface Dialer3

!

route-map rmd2 permit 10

match ip address 6

match interface Dialer2

!

route-map rmd1 permit 10

match ip address 6

match interface Dialer1

!

route-map rmd0 permit 10

match ip address 6

match interface Dialer0

!

route-map mytestroute permit 10

match ip address 164

set interface Dialer3

!

route-map mytestroute permit 20

!

then on the main ethernet interface

interface FastEthernet0/0

ip policy route-map mytestroute

..

Lee.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card