cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
530
Views
0
Helpful
3
Replies

PBR Multiple Tracking Support information for Cat2960

mhiyoshi
Level 3
Level 3

                  Hello

I have been investigating for PBR multiple tracking support devices specially Catalyst 2960.

The following is very similar to this information. However it can not be applicable to Cat2960.

[PBR Support for Multiple Tracking Options]

http://www.cisco.com/en/US/docs/ios/iproute_pi/configuration/guide/iri_prb_mult_track_external_docbase_0900e4b1810fe379_4container_external_docbase_0900e4b181525fed.html#wp1056119

But feature navigator can show the following information of this feature.


[Feature Navigator for Cat2960]
PBR Support for Multiple Tracking Options

IOS:12.2(55)SE1
Feature-Set:LAB-Base

You can find it by using the research feature and filter by PBR.

So which is correct ?

Basically Cat2960 can not support PBR or there is any related information based on the feature navigator's info.

Any information would be very helpful.

Thank you very much and Best Regards,

Masanobu Hiyoshi

3 Replies 3

Julio Carvajal
VIP Alumni
VIP Alumni

Hello,

Well the majority of the 2960 switches are L2, I know the 2960 S provides you some add-ons feature for L3 stuff but for PBR you will need an enhanced image for PBR with L3 functionality of the switch which I do not think it's available on the 2960 catalyst switches.


Here is the output of the SDM template of a 2960s after being changed from the default lan based  to the lan-base-routing:

#show sdm prefer
The current template is "lanbase-routing" template.
 The selected template optimizes the resources in
 the switch to support this level of features for
 8 routed interfaces and 255 VLANs. 
  number of unicast mac addresses:                  4K
  number of IPv4 IGMP groups + multicast routes:    0.25K
  number of IPv4 unicast routes:                    4.25K
  number of directly-connected IPv4 hosts:          4K
  number of indirect IPv4 routes:                   0.25K
  number of IPv4 policy based routing aces:         0
  number of IPv4/MAC qos aces:                      0.125k
  number of IPv4/MAC security aces:                 0.375k

No PBR bud.

Looking for some Networking Assistance? 
Contact me directly at jcarvaja@laguiadelnetworking.com

I will fix your problem ASAP.

Cheers,

Julio Carvajal Segura
http://laguiadelnetworking.com

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Hello Julio

Thank you for your precious information!

In my understanding it is conclution that the Catalyst 2960 & 2960S series

basically do not support for PBR. So PBR multiple tracking also do not support right?

Here is the output of Cat2960 and 3750X

2960#sh sdm prefer

The current template is "lanbase-routing" template.

The selected template optimizes the resources in

the switch to support this level of features for

0 routed interfaces and 255 VLANs.

  number of unicast mac addresses:                        4K

  number of IPv4 IGMP groups + multicast routes:    0.25K

  number of IPv4 unicast routes:                              4.25K

    number of directly-connected IPv4 hosts:             4K

    number of indirect IPv4 routes:                            0.25K

  number of IPv6 multicast groups:                           0.375k

  number of directly-connected IPv6 addresses:        0.75K

  number of indirect IPv6 unicast routes:                  0.5K

  number of IPv4 policy based routing aces:             0

  number of IPv4/MAC qos aces:                            0.125k

  number of IPv4/MAC security aces:                      0.375k

  number of IPv6 policy based routing aces:             0

  number of IPv6 qos aces:                                     0.375k

  number of IPv6 security aces:                              127

[3750X]

As you know by default Cat3750X normally requires SDM template as routing for

functioning PBR. Otherwise the number of IPv4 policy based routing aces

does not increase.

3750X(config-if)#ip policy route-map PBR

Mar 30 01:34:21.869: %PLATFORM_PBR-4-SDM_MISMATCH: PBR requires sdm template routing

3750X#sh sdm prefer

The current template is "desktop routing" template.

The selected template optimizes the resources in

the switch to support this level of features for

8 routed interfaces and 1024 VLANs.

  number of unicast mac addresses:                       3K

  number of IPv4 IGMP groups + multicast routes:    1K

  number of IPv4 unicast routes:                             10.875k

    number of directly-connected IPv4 hosts:           3K

    number of indirect IPv4 routes:                          7.875k

  number of IPv6 multicast groups:                        64

  number of directly-connected IPv6 addresses:      0

  number of indirect IPv6 unicast routes:                32

  number of IPv4 policy based routing aces:          0.5K

  number of IPv4/MAC qos aces:                          0.375k

  number of IPv4/MAC security aces:                   0.875k

  number of IPv6 policy based routing aces:          0

  number of IPv6 qos aces:                                  0

  number of IPv6 security aces:                           58

So what could you think about the feature navigator's information related to this?

Is it possible to modify it? or request to cisco for this?

Best Regards,

Masanobu Hiyoshi

Julio Carvajal
VIP Alumni
VIP Alumni

Hello,

Hey it's always a pleasure to help Just remember to rate of give us some stars as a thanks.

Now back to our discussion.

Exactly, if PBR is not even supported then of course the more advanced feature will not (as you need PBR).

For the 3750x it is supported but as you said:

To use PBR, you must first enable the routing template by using the

sdm prefer routing global configuration command. PBR is not supported with the VLAN or default template. For more information on the SDM templates.

So answer would be not supported on the 2960 bud!

Looking for some Networking Assistance? 
Contact me directly at jcarvaja@laguiadelnetworking.com

I will fix your problem ASAP.

Cheers,

Julio Carvajal Segura
http://laguiadelnetworking.com

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: