[nsp] policy-routing GRE tunnel packets

Alexander Bochmann bochmann at FreiNet.de
Tue Aug 19 18:47:00 EDT 2003


thanks for all the answers so far...

...on Tue, Aug 19, 2003 at 10:14:27AM -0400, Streiner, Justin wrote:

 > > I had assumed that the Tunnel packets would be
 > > subject to local policy routing, but that doesn't
 > > seem to work - according to packet debugging, the
 > You may be able to use VRF instances to make this work.  It should also
 > work fine with 12.3(1a) since that's an outgrowth of 12.2T.  That train

Hum. Perhaps I should try to outline what I'm trying to 
do - possibly there's just some stupid mistake...

Following is a rough makeup of the original config:

interface FastEthernet0/0
 ip address
interface FastEthernet0/1
 ip address
interface Tunnel0
 ip address
 tunnel source FastEthernet0/0
 tunnel destination
interface Tunnel1
 ip address
 tunnel source FastEthernet0/1
 tunnel destination
ip local policy route-map local-policy
ip route
access-list 110 permit ip any
route-map local-policy permit 10
 match ip address 110
 set ip next-hop

Theoretically, Tunnel1 packets should be subject to 
the local policy route-map and be sent out via fa0/1 -
but, in policy routing debugging, nothing is showing 
up right now, and packet debugging says that the packets 
are being sent out via fa0/0, following the default 

Does local policy-routing depend on some other global 
configuration command that is not implicitly enabled 
by IOS?

 > Make sure you use the "ip tcp adjust-mss" global command and the "tunnel
 > keepalive <X> <Y>" interface command. 

Oh, I didn't know about the tunnel keepalives and was 
planning to use some routing protocol...


More information about the cisco-nsp mailing list