IPSec Virtual Tunnel Interface and Policy-Based Routing

Unanswered Question
Aug 19th, 2009

Hello,

I have read the feature guide "IPSec Virtual Tunnel Interface"(http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gtIPSctm.html) and I have some questions:

IPsec packet flow into the IPsec tunnel is illustrated in Figure 3(http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gtIPSctm.html#wp1047929). If I configure different PBRs for inside interface,outside interface and VTI in what sequence they will be looked up?

Regards,

Aleksei

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sadbulali Tue, 08/25/2009 - 14:22

Policy-based routing includes a mechanism for selectively applying policies based on access list, packet size or other criteria. The actions taken can include routing packets on user-defined routes, setting the precedence, type of service bits, etc.

Policy routing is specified on the interface that receives the packets, not on the interface from which the packets are sent.

This explains about the policy based routing with an example:

http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a008009481d.shtml#intro

aleksei.timofeyev Tue, 08/25/2009 - 19:53

sadbulali,

Thanks for your reply. I have read this before.

Could you look at Figure 3 and answer my question?

Actions

This Discussion