This blog was originally started to better help me understand the technologies in the CCIE R&S blueprint; after completing the R&S track I have decided to transition the blog into a technology blog.
CCIE #29033
This blog will continue to include questions, troubleshooting scenarios, and references to existing and new technologies but will grow to include a variety of different platforms and technologies. Currently I have created over 185 questions/answers in regards to the CCIE R&S track!! Note: answers are in the comment field or within "Read More" section.
You can also follow me on twitter @FE80CC1E
How do you ensure that any www traffic uses serial 1/0 and telnet and ssh traffic uses serial 1/1? All other packets use the best route. Provide an example
1 comments:
I only included the example of locally generated traffic. If you were going to use this policy for the 192.168.1.0/24 you would apply this to the fastethernet 1/0 interface in R1.
R1
__
interface FastEthernet0/1
no ip address
ip policy route-map PBR_Q141
duplex auto
speed auto
no keepalive
!
interface Serial1/0
ip address 10.0.0.1 255.255.255.0
serial restart-delay 0
no fair-queue
!
interface Serial1/1
ip address 10.0.1.1 255.255.255.0
serial restart-delay 0
router eigrp 1
passive-interface default
no passive-interface FastEthernet0/1
no passive-interface Serial1/0
no passive-interface Serial1/1
network 10.0.0.1 0.0.0.0
network 10.0.1.1 0.0.0.0
network 192.168.1.0
no auto-summary
!
ip local policy route-map PBR_Q141 (this was included so we can test using locally generated traffic)
!
route-map PBR_Q141 permit 10
match ip address 100
set interface Serial1/0
!
route-map PBR_Q141 permit 20
match ip address 199
set interface Serial1/1
!
access-list 100 permit tcp any any eq www
access-list 199 permit tcp any any eq telnet
That is set so lets enable debugging and do some testing.
do debug ip policy
Policy routing debugging is on
R6(config)#do telnet 2.2.2.2 80
Trying 2.2.2.2, 80 ... Open
*Mar 1 04:58:45.918: IP: s=10.0.1.1 (local), d=2.2.2.2, len 44, policy match
*Mar 1 04:58:45.922: IP: route map PBR_Q141, item 10, permit
*Mar 1 04:58:45.926: IP: s=10.0.1.1 (local), d=2.2.2.2 (Serial1/0), len 44, policy routed
do telnet 2.2.2.2
Trying 2.2.2.2 ... Open
Password required, but none set
*Mar 1 05:01:53.198: IP: s=10.0.1.1 (local), d=2.2.2.2, len 44, policy match
*Mar 1 05:01:53.202: IP: route map PBR_Q141, item 20, permit
*Mar 1 05:01:53.202: IP: s=10.0.1.1 (local), d=2.2.2.2 (Serial1/1), len 44, policy routed
Give it a try!
Post a Comment