I have one router with multiple ethernet interfaces connected to two different ISPs. I'm using route-map for PBR and for dynamic NAT. IOS version I'm using is 12.4 advanced enterprise. Internet redundancy is not working. PBR makes the switching of ISP, but dinamic nat with the second ISP is not working. See the attachment.
No chance for debug ip policy; I've tried debug ip nat 97 where 97 is and acl which selects one of the pc-s in inside lan, but I haven't seen any log when i change the PBR for this pc to have as a primary next hop the second ISP, by changing the metric. I know that PBR is working as it needs to work, because, if I put a static nat with an IP of second provider everything is ok. So I'm sure is smth wrong with route-map for NAT. When I use the command for show route-map, the route-map for NAT does not show any matching packets.
I think you should take a look at the route-maps for the NAT. I think by default route-map is match all. so both conditionals must be met before route-map will be active. but the conditions you have cannot be met.
access-list can be met but the interface is not the source of the packet so route-map will not match it.
the source of the packet is FastEthernet0/1 not any of the other interfaces u have specified.
try removing the interface speficication altogether or put FastEthernet0/1 instead of the ethernet interfaces.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...