cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
381
Views
0
Helpful
4
Replies

Routing issue

vishwancc
Level 3
Level 3

Hi ALL:

I am facing a strange issue

I have 2 router 1 for internet and other for MPLS

but what is happening for 1 ip address my traffic is going to the mpls router and then to the internet router

This is how the traffic is going for internet ip

1 <1 ms <1 ms <1 ms x.x.17.2

2 <1 ms <1 ms <1 ms c.c.c.6

3 <1 ms <1 ms <1 ms [z.z.z.1]----MPLS router

4 2 ms 3 ms 3 ms y.y.y.35-------Internet router ip

5 1 ms 1 ms 1 ms [x.x.x.70]

This is how it should go

1 <1 ms <1 ms <1 ms x.x.17.2

2 <1 ms <1 ms <1 ms c.c.c.6

4 2 ms 3 ms 3 ms y.y.y.35-------Internet router ip

5 1 ms 1 ms 1 ms [x.x.x.71]

Both ip in same subnet

On my L3 i have access port in 201 for internet and 203 for mpls even though the

L3A is connected to L2 with access port 201 vlan it sending 203 traffic i have no idea why?

I am running OSPf and have FWSM on both L3 which is connect to L2

This is the route on FWSM:

route outside x.x.x.64 255.255.255.240 10.206.206.35 1

both ip fall in this subnet .

Chao

Vishwa

4 Replies 4

spremkumar
Level 9
Level 9

Hi

do you have any specific policies applied in your L3 switch or in your FW to redirect the traffic to MPLS Routers ethernet ip ?

Is this the behavior for only one ip addrss ? what abt the rest of the ips are the going to without going to mpls router ?

regds

You could also try applying a policy that denies traffic from going to the MPLS cloud. Sounds like you have a route leak.

Best practice I think is to tag the specific traffic and do a route-map deny statement to catch that traffic.

Hi Rock/Prem

The problem i with 1 specific ip only.

this is the route on the FWSM

route outside x.x.x.64 255.255.255.240 10.206.206.35 1

As i have said only 1 ip is taking the other path .

And if i put any ACL on the L2 switch for .70 ip than the traffic is dropping on the L2 itself

its not taking any other path.

and i am not able to understand how traffic for vlan 201 is going on 203 .

Chao

Vishwa

Any suggestion Guys...

Chao

Vishwa

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: