[c-nsp] PBR with NAT/PAT - strange (non-deterministic) behaviour
Oliver Boehmer (oboehmer)
oboehmer at cisco.com
Fri Mar 7 03:41:02 EST 2008
Dale Shaw <> wrote on Friday, March 07, 2008 9:26 AM:
> G'day oli,
>
> On Fri, Mar 7, 2008 at 7:02 PM, Oliver Boehmer (oboehmer)
> <oboehmer at cisco.com> wrote:
>>
>> Can you try adding "match interface" to the NAT route-maps? I.e.
>>
>> route-map App01-NAT-FOO1 permit 10
>> match ip address 125
>> match interface Serial0/1.742
>
> Sigh! Thanks -- that was it. I was under the mistaken impression
> "match interface" was a match on the source/input interface. I blame a
> colleague :-)
>
> Can you explain why "match interface" works but "match ip next-hop"
> didn't? Is "match ip next-hop" not applicable to NAT route-maps?
match ip next-hop should also work. Not sure why it didn't, would need
to see the full config.. but in your case, I'd work with interfaces
(also use "set interface" in PBR route-map)..
oli
More information about the cisco-nsp
mailing list