Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Policy Based Routing on vlans

Greetings,

I have two  firewall with two different ISP'S. two interface configured in one firewall and other in another firewall,such as

Firewall1 interface 1  ip address 10.1.12.2

Firewall 1 interface 2 ip address 172.16.30.2

Firewall 2 interface 1 ip address 10.1.25.2

Firewall 2 intefface 2 ip address 10.1.30.2

i have four vlans such as vlan 10 10.1.12.1, vlan 20 172.16.30.1,  vlan30 10.1.25.1, vlan 40 10.1.30.1

intervlan works fine untill i enable PBR as shown below

access-list 101 permit 10.1.12.0 0.0.0.255 172.16.30.0 0.0.0.255

access-list 102 permit 10.1.12.0 0.0.0.255 10.1.25.0 0.0.0.255

access-list 103 permit 10.1.12.0 0.0.0.255 10.1.30.0 0.0.0.255

access-list 104 permit 10.1.12.0 0.0.0.255 0.0.0.0 0.0.0.0

Route-map vlan_10 permit 10

match ip address 101

set ip next-hop 172.16.30.1

Route-map vlan_10 permit 20

match ip address 102

set ip next-hop 10.1.25.1

Route-map vlan_10 permit 30

match ip address 103

set ip next-hop 10.1.30.1

Route-map vlan_10 permit 40

match ip address 104

set ip next-hop 10.1.12.2

interface vlan 10

ip police route-map vlan_10

trafic from vlan 10 goes to 10.1.12.2 (firewall interface)  internet works fine but intervlans comunnication is not happeing i cann't ping other vlans.

Please assists

152
Views
0
Helpful
0
Replies
CreatePlease to create content