Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

urgent help in pbr

Dear all

i have 2 offices, from office A i have 2 point to point leased lines(128kbps each)

connecting to office B.

office A ------------------- Office B

192.168.1.0/24 ------------------ 192.168.3.0/24

i have not bundled the 2 serial lines i had put 2 routing entries in office A router

ip route 192.168.3.0 255.255.255.0 Serial0/0/0

ip route 192.168.3.0 255.255.255.0 Serial0/0/1

from office B router also i have the proper routing entries and it is working fine.

now my requirement is i have got an internet leased line and i've 6 public ip addresses as well, from office A i need to publish one server i tried configuring

policy based routing on the same router but it is not working can anybody help me in this issue.

i will post the configuration file please have a look into it.i will rate all the suggestions

thanks & regards

Binoy

1 REPLY
Hall of Fame Super Silver

Re: urgent help in pbr

Hello Binoy,

in your scenario I don't think you need PBR.

just use extended ACL to permit only private-to-private or public to public traffic.

In fact,

when going to private you will go to siteB

when going to the internet you will go via the interface that provides the default-route

use ACLs to avoid sending packets with private RFC 1918 addresses to the internet

access-list 121 deny ip 192.168.0.0 0.0.255.255 any

access-list 121 permit ip 85.154.246.144 0.0.0.7 any

access-list 121 permit ip 85.154.246.180 0.0.0.3 any

int ser0/10

ip access-group 121 out

Hope to help

Giuseppe

108
Views
0
Helpful
1
Replies