Could anyone share an example of ISG's PBHK configuration, pretty please?
i'm facing an issue when applying PBHK within the subscriber policy. Here is what i do:
policy-map type service PBHK
ip portbundle
!
policy-map type control ISG
class type control always event session-start
1 service-policy type service name PBHK
10 service-policy type service name S_L4R
!
class type control always event session-restart
1 service-policy type service name PBHK
10 service-policy type service name S_L4R
!
class type control always event account-logon
10 authenticate aaa list RAD_SRV
access-list 100 permit ip any host 192.168.8.227
ip portbundle
length 5
match access-list 100
source GigabitEthernet2
interface GigabitEthernet1
description endhosts
ip address 192.168.0.254 255.255.255.0
ip helper-address vrf SRV 192.168.8.228
service-policy type control ISG
ip subscriber l2-connected
initiator unclassified mac-address
interface GigabitEthernet2
description server-dhcp-int_gw
vrf forwarding SRV
ip address dhcp
ip portbundle outside
When i enable the network interface on the end host i see whole bunch of debug messages saying:
Portbundle Hostkey: Apply inbound direction from Service Profile configuration
Portbundle Hostkey[uid:33]: No free port-bundles - feature failed
Portbundle Hostkey[uid:33]: Key update: remove port-bundle 0.0.0.0:0
Portbundle Hostkey[uid:33]: Sent a PBHK session key remove
How can it be out of ports, if none of them are used?
ISG#show ip portb sta
Bundle-length = 5
Bundle-groups: -
IP Address Free Bundles In-use Bundles
192.168.8.230 2016 0
Best regards,
Arseniy S. Ivanov