I have a 2811 with 3 ISP's, and am trying to set up equal-cost routes for load-balancing. The ISP interfaces and firewall interface are in a "PUBLIC" vrf. All other interfaces are in the global config. Everything is fine with a single default route. However, when I add a 2nd default route, I lose all connectivity to both public interfaces. I can still access the firewall interface (from a node behind the interface). Are there any restrictions in VRF for multiple default routes? Related config is attached.
If I were trying to access internal hosts, perhaps, but I'm simply trying to SSH to any of the public interfaces within the VRF from a non-local public ip address. I didn't think NAT played a part there. I have been known to be wrong before, though... :)
Can you provide a detailed description as the source and destination of the traffic and ip route table before and after the problem occurs.
In your original message, you stated 'all other interfaces are in the global config' yet on the portion of the config it only shows interfaces within the VRF, no interfaces in the global routing table.
If you want to isolate this to a NAT issue, add the multiple default routes and during a maintenance window, remove the NAT and try to SSH.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...