Re: 7500 CEF PBR

Neil Wurzel · ‎01-04-2006

Any ideas!

7500 router running CEF distributed due to MPLS TE and VoFR as well as policy based routing on the interfaces, it is not showing matches on the access list or in the route cache flow.Have tried CEF policy routing and fast switched policy routing. Running IOS 123-1a.

mheusinger · ‎01-04-2006

Hi,

which interfaces are you using PBR on? In case you have already labels in place it is not considered as IP traffic (infact protocoll type 0x8847). In this case I would not expect any matches in any access-list.

So PBR can only be used on IP interfaces. There were some issues with PBR on VRF interfaces.

Hope this helps

Martin

P.S.: In case this doesn´t help: can you be more specific or even give a config?

Neil Wurzel · ‎01-04-2006

Martin,

The problem is specifically on FastEthernet 0/0/1 with the ACL extended SAP-DNS. Can not see any traffic flows specifically from FastEthernet 0/0/1 up any of the GRE Tunnels. Below is the configuration.

Cheers,

Neil

mheusinger · ‎01-04-2006

Hi,

unfortunately there is no F0/0/1 in the config. But in case you want to prioritize traffic across a GRE tunnel over the FastEthernet, then you need qos pre-classify.

Example:

Interface Tunnel0

qos pre-classify

Have a look at

"Configuring QoS for Virtual Private Networks"

http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a00800c75d3.html

This will keep a copy of the original IP header in memory with the encapsulated GRE packet. Classification and policies etc. can then be applied based on the original header information.

Otherwise you would just see GRE traffic.

Hope this helps

Martin

Neil Wurzel · ‎01-04-2006

Martin,

I will try it out and let you know, sorry the inteface was interface FastEthernet1/0/0.

Cheers,

Neil