Cisco 3560 & 122-53.SE1 - not able to bind route-map to interface?

Unanswered Question
Apr 2nd, 2010
User Badges:
  • Cisco Employee,

So I've got my route map configuration live, and I'm trying to bind it to vlan50.


There is no available command in the interface config to do a "ip policy route-map name"


What am I missing here?


Switch(config-if)#ip ?
Interface IP configuration subcommands:
  access-group        Specify access control for packets
  accounting          Enable IP accounting on this interface
  address             Set the IP address of an interface
  admission           Apply Network Admission Control
  auth-proxy          Apply authenticaton proxy
  authentication      authentication subcommands
  bandwidth-percent   Set EIGRP bandwidth limit
  bgp                 BGP interface commands
  broadcast-address   Set the broadcast address of an interface
  cef                 Cisco Express Forwarding interface commands
  cgmp                Enable/disable CGMP
  dampening-change    Percent interface metric must change to cause update
  dampening-interval  Time in seconds to check interface metrics
  dhcp                Configure DHCP parameters for this interface
  directed-broadcast  Enable forwarding of directed broadcasts
  dvmrp               DVMRP interface commands
  hello-interval      Configures EIGRP-IPv4 hello interval
  helper-address      Specify a destination address for UDP broadcasts
  hold-time           Configures EIGRP-IPv4 hold time
  igmp                IGMP interface commands
  information-reply   Enable sending ICMP Information Reply messages
  irdp                ICMP Router Discovery Protocol
  load-sharing        Style of load sharing
  local-proxy-arp     Enable local-proxy ARP
  mask-reply          Enable sending ICMP Mask Reply messages
  mrm                 Configure IP Multicast Routing Monitor tester
  mroute-cache        Enable switching cache for incoming multicast packet
  mtu                 Set IP Maximum Transmission Unit
  multicast           IP multicast interface commands
  next-hop-self       Configures EIGRP-IPv4 next-hop-self
  ospf                OSPF interface commands
  pim                 PIM interface commands
  probe               Enable HP Probe support
  proxy-arp           Enable proxy ARP
  rarp-server         Enable RARP server for static arp entries
  redirects           Enable sending ICMP Redirect messages
  rgmp                Enable/disable RGMP
  rip                 Router Information Protocol
  route-cache         Enable fast-switching cache for outgoing packets
  router              IP router interface commands
  sap                 Session Advertisement Protocol interface commands
  security            DDN IP Security Option
  split-horizon       Perform split horizon
  sticky-arp          Allow the creation of sticky ARP entries
  summary-address     Perform address summarization
  tcp                 TCP interface commands
  unnumbered          Enable IP processing without an explicit address
  unreachables        Enable sending ICMP Unreachable messages
  urd                 Configure URL Rendezvousing
  verify              Enable per packet validation
  vrf                 VPN Routing/Forwarding parameters on the interface
  wccp                WCCP interface commands

Switch(config-if)#ip

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
allan.thomas Fri, 04/02/2010 - 19:05
User Badges:
  • Blue, 1500 points or more

Hi,


I suspect the IOS version that you are running does not have the correct feature set?  For specific routing features you will require IP Services IOS.


Regards

Allan.

Lei Tian Fri, 04/02/2010 - 19:56
User Badges:
  • Cisco Employee,

Hi Bill,


To configure PBR on 3650, you need to have ip services software, and sdm prefer routing must be used.


HTH,

Lei Tian

Nabil Yazji Sat, 04/03/2010 - 12:24
User Badges:
  • Cisco Employee,

If only the answer were that simple. I am running IP Services, as well as have the SDM profile for routing enabled.


Switch#sho sdm prefer
The current template is "desktop routing" template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1024 VLANs.

  number of unicast mac addresses:                  3K
  number of IPv4 IGMP groups + multicast routes:    1K
  number of IPv4 unicast routes:                    11K
    number of directly-connected IPv4 hosts:        3K
    number of indirect IPv4 routes:                 8K
  number of IPv4 policy based routing aces:         0.5K
  number of IPv4/MAC qos aces:                      0.5K
  number of IPv4/MAC security aces:                 1K

Switch#

Jon Marshall Sat, 04/03/2010 - 13:34
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Hmmm, scratch that question - you are in interface mode. Not thinking tonight


Jon

Nabil Yazji Sat, 04/03/2010 - 14:27
User Badges:
  • Cisco Employee,

Jon,


LOL, yes... you are right, the ip routing isn't in the interface config.


Yes, ip routing is configured - I am routing properly between vlans...


I'm still baffled.


~B

Jon Marshall Sat, 04/03/2010 - 14:37
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

byazji wrote:


Jon,


LOL, yes... you are right, the ip routing isn't in the interface config.


Yes, ip routing is configured - I am routing properly between vlans...


I'm still baffled.


~B


Bill


You are running "desktop routing" template whereas you should be running "routing" template  ie.


sdm prefer routing


Jon

allan.thomas Sat, 04/03/2010 - 15:05
User Badges:
  • Blue, 1500 points or more

Hi,


From the output I believe that the routing template is already enforced as there are number of policy based routing aces available, ordinarily the default is zero, although I could be mistaken.


This is an example of output from the show sdm prefer  routing command entered on a switch:

Switch# show sdm prefer routing

"desktop routing" template:

 The selected template optimizes the resources in

 the switch to support this level of features for

 8 routed interfaces and 1024 VLANs.

  number of unicast mac addresses:             3K

  number of igmp groups + multicast routes:    1K

  number of unicast routes:                    11K

    number of directly connected hosts:        3K

    number of indirect routes:                 8K

  number of policy based routing aces:         512

  number of qos aces:                          512

  number of security aces:                     1K


How is your route-map configured? The reason I ask is that there are certain unsupported configurations which prohibit the configuration from be applied.  However the route-map can still be applied in this case but will throw an error in the process.  For example, the only issue that I can find regarding PBR on 12.2(53)SE1 is as follows:-


(Catalyst 3750 or 3560 switches and Cisco

EtherSwitch service modules) A route map that has an ACL with a 
Differentiated Services Code Point (DSCP) clause cannot be applied to a
Layer 3 interface. The switch rejects this configuration and displays a
message that the route map is unsupported. There is no workaround.
(CSCea52915)


Regards

Allan.

Jon Marshall Sat, 04/03/2010 - 15:13
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Allan


However the route-map can still be applied in this case but will throw an error in the process. 


That's what made me think it might be the template because as you say the route-map can still be applied but Bill doesn't even have the option to apply it regardless of whether it would be accepted or not.


Be interesting to see Bill's response


Jon

Jon Marshall Sat, 04/03/2010 - 15:23
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Allan


Actually you are right (+5 for correcting me). I was thinking of the 3750 which has a separate desktop routing template. I think i'll just drop out of this thread.



Bill apologies, i'm normally better than this i promise


Jon

allan.thomas Sat, 04/03/2010 - 15:38
User Badges:
  • Blue, 1500 points or more

Jon,


Got to admit this is a strange one, utimately I think that this one maybe one for TAC as it is possibly a software defect?  I wasn't entirely sure whether there was a different template as you mentioned, but assumed the routing template was enabled as the policy base aces were not zero.


Allan.

Nabil Yazji Sun, 04/04/2010 - 18:05
User Badges:
  • Cisco Employee,

OK, so to reply the last few messages.


Yes, the output of my show sdm prefer is based on my running of the command sdm prefer routing and rebooting a week or so ago.


And, my route map configuration :


access-list 10 permit 192.168.50.50
route-map out_asa permit 10
match ip address 10
set ip next-hop 192.168.99.1


I'm not using any of the non-support commands (that I am aware of from what I researched.).  I'm just baffled why when I'm in the interface configuration, I do a ip ? - and the option for policy isn't even there!

Nabil Yazji Tue, 04/06/2010 - 07:26
User Badges:
  • Cisco Employee,

I had a thought this AM, and I was on the mark.


On the vlan50 interface, I was doing WCCP redirection.


You can't do WCCP and a route map on the same interface.  Dang!!.


ch_sajid_hussain Sun, 01/16/2011 - 05:09
User Badges:

plz download this IOS 122-55.SE1 . This is a new release of cisco for 3560. in this software there is a support for route-map to interface. Thanx

asanchezjavier Thu, 07/24/2014 - 12:58
User Badges:

Me esta ocurriendo exactamente lo mismo

pero creo que ya lo tendre resuelto gracias a sus post.

 

I have the same problem

but I hope to resolve with your post

Theank you very much.

Actions

This Discussion

Related Content