Re: [nsp] Routing based on source address

From: Mark D. Nagel (nagel@intelenet.net)
Date: Tue Jan 27 1998 - 14:41:21 EST


On Tue, 27 Jan 1998 16:57:11 GMT,
+++ Gerald Mutisya <Mutisya@africaonline.co.ke> (gerald) said:

gerald> Is it possible to route outgoing traffic based on the source address? I
gerald> have a Cisco 3640 w IOS 11.1 and two links via two service providers. One
gerald> service provider has a firewall providing NAT (hence I use 10.* addresses)
gerald> but the newer link does not yet have this functionality.

Yes, you use policy routing to implement this, however, all packets
will be process switched (at this time). To implement policy routing,
you do something like the following (mostly from the CCO docs):

    access-list 1 permit 174.21.3.0 0.0.0.255
    !
    interface serial 0
    ip policy route-map policy-map
    !
    route-map policy-map
    match ip address 1
    set ip next-hop 174.21.3.20

This will route all packets that arrive on Serial0 that have a source
address of 174.21.3.* via the next hop address 174.21.3.20 rather than
what they would have normally used. See
http://www.cisco.com/univercd/cc/td/doc/product/software/ios112/112cg_cr/5rbook/5riprout.htm#xtocid2198498
for more info (but there is a bug in the original example -- you have
to use an access list to specify the 'match ip address' part of the
route map).

Mark

-- 
Mark D. Nagel <nagel@intelenet.net>    in | tele | net communications
CCIE #3177                             18101 Von Karman Avenue, Suite 550
                                       Irvine, CA 92612
714/851-8250 (voice), 714/851-1088 (fax), http://www.intelenet.net/ (web)



This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:13:14 EDT