Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

route-map and acl between 2 ISPs

I have a 2620 connected to 2 ISPs - I have 10 local hosts with private IPs that need to be static NAT and pointed to 1 of the ISPs and the rest of the local hosts will be NAT to a pool to the other ISP. This what I have so far - my problem is with the access-lists -

How do I have the access-lists know that I only want 10.17.0.3 - 30 allowed access to ISP2 and the rest allowed access to ISP1? Do I need a second route-map and access-list or will the default route take care of that? Any other suggestions would be appreciated.

int fa0/0

ip address 10.17.0.2

ip policy route-map ISP2

ip nat inside

int s0/0

connected to ISP1

ip address x.x.x.x

ip nat outside

int s0/1

connected to ISP2

ip address y.y.y.y

ip nat outside

ip route 0.0.0.0 0.0.0.0 x.x.x.a

access-list 199 permit ip ????????

route-map ISP2 permit 10

match ip address 199

set ip default next -hop y.y.y.b

1 REPLY
Bronze

Re: route-map and acl between 2 ISPs

Your post is very interesting for me.

I was thinking if this document would help:

http://www.cisco.com/warp/customer/105/nat_routemap.html

Do you use different range of public IPs from the two ISPs?

If so, do ISP-1 allow you to send them packets using ISP-2's address

as your source address? and vice-versa?

I have asked this because I was trying to write

the configs but I do not want to make some assumptions.

Hope this helps.

82
Views
0
Helpful
1
Replies