I have a problem with Policy Based Routing on a Cisco Catalyst 6500 with IOS ipservicesk9-mz.122-33.SXH2a.
I try to redirect traffic, and only that traffic, for machines with private ip address (10.10.10.0/24) to the port TCP/1111
of a server 195.x.x.1 in public ip. The principle is: my 10.10.10.0/24 machines emit traffic bound for the port
tcp/1111 to 195.x.x.1 , the PBR on the 6500 router intercepts traffic which sends it on a Linux NAT (10.10.10.2) that translate through his second interface (public) on the destination server (195.x.x.1). The NAT server can not be made from 6500 but from a different machine for other reasons. The Policy Based Routing (ip policy route-map) is applied on a vlan interface, I also experimented with on a physical interface without further success.
The Linux NAT server is working properly.
Here, the Policy Based Routing (route-map) is not working. Here is the conf:
! Creation of the road-map
TST-route-map PBR permit 10
! Filtering machines
match ip address ACL-TST
! Address assignment redirect traffic (NAT server)
set ip next-hop 10.10.10.2
6500 # show ip access-list ACL-TST
Extended IP access list ACL-TST
10 permit tcp 10.10.10.0 0.0.0.255 host 195.x.x.1 eq 1111
Have you an idea where it comes from? if you need more informations, please feel free to ask me;-)