We manage a campus MPLS network comprised of Cisco 76xx routers as my "P" devices. Attached to the MPLS core are several PE devices (Cisco 6509 VSS pairs). I have a single VRF named "students" that exists across all my PE devices. Across this "students" VRF I have some addresses that are public and some that are private. When any "students" VRF traffic hits my enterprise edge PE device, I need to policy route this traffic to either (A) the firewall for NAT'ing the private addresses or (B) for public addresses just route directly to the Internet (around the firewalls). My challenge is that this traffic enters the enterprise edge PE via an MPLS interface. Can I put a policy on an MPLS interface for this? This is a production environment so I can't just throw it on and see if it works. I also can't really find any definitive documentation on exactly how to do this.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...