Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Policy Based Routing

Hello Friends,

1) I have 2 links to ISP 1 from leased line with fixed public IP and the other i m having is the ADSL line i want to classify traffic on source incoming interface fa0/0 of router so that employess traffic should flow from ADSl link to internet  and static Natted servers should flow from leased line from fixed public IP.

I have to do Policy based routing i need to seperate below servers from corporate users traffic by access-list calling in route map how can i do that.

My static servers are:

10.71.4.7 http and https

10.71.4.23 http and smtp.

Corporate users are:

10.71.0.0

3 REPLIES
New Member

Re: Policy Based Routing

Hello Friends,

Anybody can help me for the above query.

Thanks

Re: Policy Based Routing

Hello!

Why don't you consider to NAT on subnet (clients) to one WAN IP address and the other subnet (servers) to the other WAN IP address?

In this way each subnet will reach Internet over a well defined path.

Second, I have problems understanding your configuration:

access-list 102 permit tcp any host 10.71.4.7 eq www
access-list 102 permit tcp any host 10.71.4.4 eq 8443

......

route-map WWW-REDIRECT permit 20
match ip address 102
set interface FastEthernet0/1

!
interface FastEthernet0/1
description *** test Connection to Internet ***

!

interface FastEthernet0/0
description ** Connected to External ASA **

ip address 10.71.10.3 255.255.255.192
ip policy route-map WWW-REDIRECT

So, you have a server in the LAN (in your LAN or somewhere remote) 10.71.4.7 which apparently run a HTTP service. Then the packets that are arriving on Fa0/0, which is your connection to ASA (I believe that this is your LAN connection) with destination 10.71.4.7 should go to the Internet interface?

How is this going to work giving the fact that you are having private subnet range which has to go out on the Internet?

Please explain your configuration in more details, maybe show us a topology drawing

Cheers,

Calin

New Member

Re: Policy Based Routing

Hello Calin,

Here is the attached,pls verify this configs are correct.

Dont go on the access-list mentioned in the configs those are useless, done by fool engineer, what i want a help from u is that my servers are on inside interface fa0/0 and thier IP is 10.71.4.7 and 10.71.4.23, i want  them to move from fa0/1 that are with fixed public Ip address,and i want rest my users to move through dialer interface for HTTP and HTTPS browsing.

The above servers are static natted with public IP you can see in configs.

can u help me with the routemap.attached is correct

447
Views
0
Helpful
3
Replies
CreatePlease login to create content