Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
398
Views
0
Helpful
4
Replies

Routing issue

vishwancc
Level 3
Level 3

‎02-10-2009 07:14 AM - edited ‎03-04-2019 03:30 AM

Hi ALL:

I am facing a strange issue

I have 2 router 1 for internet and other for MPLS

but what is happening for 1 ip address my traffic is going to the mpls router and then to the internet router

This is how the traffic is going for internet ip

1 <1 ms <1 ms <1 ms x.x.17.2

2 <1 ms <1 ms <1 ms c.c.c.6

3 <1 ms <1 ms <1 ms [z.z.z.1]----MPLS router

4 2 ms 3 ms 3 ms y.y.y.35-------Internet router ip

5 1 ms 1 ms 1 ms [x.x.x.70]

This is how it should go

1 <1 ms <1 ms <1 ms x.x.17.2

2 <1 ms <1 ms <1 ms c.c.c.6

4 2 ms 3 ms 3 ms y.y.y.35-------Internet router ip

5 1 ms 1 ms 1 ms [x.x.x.71]

Both ip in same subnet

On my L3 i have access port in 201 for internet and 203 for mpls even though the

L3A is connected to L2 with access port 201 vlan it sending 203 traffic i have no idea why?

I am running OSPf and have FWSM on both L3 which is connect to L2

This is the route on FWSM:

route outside x.x.x.64 255.255.255.240 10.206.206.35 1

both ip fall in this subnet .

Chao

Vishwa

Labels:
Preview file
35 KB
0 Helpful
4 Replies 4

spremkumar
Level 9
Level 9

‎02-10-2009 08:18 AM

Hi

do you have any specific policies applied in your L3 switch or in your FW to redirect the traffic to MPLS Routers ethernet ip ?

Is this the behavior for only one ip addrss ? what abt the rest of the ips are the going to without going to mpls router ?

regds

0 Helpful

Brent Rockburn
Level 2
Level 2
In response to spremkumar

‎02-10-2009 09:00 AM

You could also try applying a policy that denies traffic from going to the MPLS cloud. Sounds like you have a route leak.

Best practice I think is to tag the specific traffic and do a route-map deny statement to catch that traffic.

0 Helpful

vishwancc
Level 3
Level 3
In response to Brent Rockburn

‎02-10-2009 08:01 PM

Hi Rock/Prem

The problem i with 1 specific ip only.

this is the route on the FWSM

route outside x.x.x.64 255.255.255.240 10.206.206.35 1

As i have said only 1 ip is taking the other path .

And if i put any ACL on the L2 switch for .70 ip than the traffic is dropping on the L2 itself

its not taking any other path.

and i am not able to understand how traffic for vlan 201 is going on 203 .

Chao

Vishwa

0 Helpful

vishwancc
Level 3
Level 3
In response to vishwancc

‎02-12-2009 06:52 AM

Any suggestion Guys...

Chao

Vishwa

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card