Can someone please tell me what these three router config items are doing?
We have a router on a stick enviorment.
we have an IP poiicy statement on the Ethernet 0/0
IP policy route-map EDI
We have a route-map definition that looks like this:
route-map EDI permit 10
match ip add EDI-Fuse
set ip next-hop 10.49.1.2
We have a long Extended ACL that has both permit and deny statement in it. For simplicy I have just one of the deny and one of the permits: The list of denies are first if that makes a difference:
deny ip any 10.0.0.0 0.255.255.255
permit ip host 10.49.2.183 host 18.104.22.168
Yes. It's not a security ACL.
What you are showing us is an example of what is called "policy routing."
Typically, a router makes a forwading decision based on the destination address of the packet received on its interface.
There are times when a network designer would like the router to make a forwarding decision based on the source IP address instead.
With an extended access list, not only is the source address the concern, but also where the packet is destined.
Take note that policy routing is performed before normal, destination-based routing. So, the route map is going to be activated and its going to "call" the access list when a packet is received on your e0/0 interface.
With the "match" command, the route map is telling the router, "IF the source is any network and it is destined for the 10.0.0.0/8 network, deny it and do NOT forward it. IF the source is 10.49.2.183 and its destined for host 22.214.171.124, THEN permit it and SET the next hop to be 10.49.1.2.