Routing issue

Unanswered Question
Feb 10th, 2009
User Badges:

Hi ALL:


I am facing a strange issue

I have 2 router 1 for internet and other for MPLS

but what is happening for 1 ip address my traffic is going to the mpls router and then to the internet router



This is how the traffic is going for internet ip


1 <1 ms <1 ms <1 ms x.x.17.2

2 <1 ms <1 ms <1 ms c.c.c.6

3 <1 ms <1 ms <1 ms [z.z.z.1]----MPLS router

4 2 ms 3 ms 3 ms y.y.y.35-------Internet router ip

5 1 ms 1 ms 1 ms [x.x.x.70]



This is how it should go

1 <1 ms <1 ms <1 ms x.x.17.2

2 <1 ms <1 ms <1 ms c.c.c.6

4 2 ms 3 ms 3 ms y.y.y.35-------Internet router ip

5 1 ms 1 ms 1 ms [x.x.x.71]


Both ip in same subnet


On my L3 i have access port in 201 for internet and 203 for mpls even though the

L3A is connected to L2 with access port 201 vlan it sending 203 traffic i have no idea why?


I am running OSPf and have FWSM on both L3 which is connect to L2


This is the route on FWSM:


route outside x.x.x.64 255.255.255.240 10.206.206.35 1


both ip fall in this subnet .


Chao

Vishwa



Attachment: 
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
spremkumar Tue, 02/10/2009 - 08:18
User Badges:
  • Red, 2250 points or more

Hi


do you have any specific policies applied in your L3 switch or in your FW to redirect the traffic to MPLS Routers ethernet ip ?

Is this the behavior for only one ip addrss ? what abt the rest of the ips are the going to without going to mpls router ?


regds


Brent Rockburn Tue, 02/10/2009 - 09:00
User Badges:

You could also try applying a policy that denies traffic from going to the MPLS cloud. Sounds like you have a route leak.


Best practice I think is to tag the specific traffic and do a route-map deny statement to catch that traffic.



vishwancc Tue, 02/10/2009 - 20:01
User Badges:

Hi Rock/Prem


The problem i with 1 specific ip only.

this is the route on the FWSM

route outside x.x.x.64 255.255.255.240 10.206.206.35 1


As i have said only 1 ip is taking the other path .

And if i put any ACL on the L2 switch for .70 ip than the traffic is dropping on the L2 itself

its not taking any other path.

and i am not able to understand how traffic for vlan 201 is going on 203 .



Chao

Vishwa



Actions

This Discussion