interface with ACL and route-map

Answered Question
Aug 6th, 2009

I am trying to clear something up, I have an interface that has both an access-list and a route-map. If the traffic matches to an ACE will it then be processed by the route-map or does it bypass the route-map? I am trying to understand what the order is that traffic gets evaluated on an interface.

I have this problem too.
0 votes
Correct Answer by Richard Burts about 7 years 3 months ago

Chris

If we had more detail about your situation we could understand it better and could give better advice. Without knowing any details I would assume that the route map on the interface is for Policy Based Routing. And it would help to know whether the access list was applied inbound or outboud. Assuming that it is applied inbound then if the input packet is permitted by the access list then it would be processed by the route map for PBR.

If you would provide config details of the interface config and the access list and the route map, then we could know whether my assumptions are correct or not and might provide better advice.

HTH

Rick

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Richard Burts Thu, 08/06/2009 - 05:00

Chris

If we had more detail about your situation we could understand it better and could give better advice. Without knowing any details I would assume that the route map on the interface is for Policy Based Routing. And it would help to know whether the access list was applied inbound or outboud. Assuming that it is applied inbound then if the input packet is permitted by the access list then it would be processed by the route map for PBR.

If you would provide config details of the interface config and the access list and the route map, then we could know whether my assumptions are correct or not and might provide better advice.

HTH

Rick

smolz Thu, 08/06/2009 - 05:08

You are right on both of your assumptions, the route map is for policy routing and the acl is applied inbound.

interface Vlanxxx

ip address 10.1.1.1 255.255.255.0

ip access-group INBOUND in

ip access-group OUTBOUND out

ip policy route-map map

Is there any cisco documentation on this?

Actions

This Discussion