networking-forum.com
Community BlogCommunity Wiki * Register  * Search  * Login
View unanswered postsView active topics

Board index » Cisco Networking » Dynamips/GNS3 and Labs

All times are UTC - 6 hours [ DST ]


Post new topic Reply to topic  Page 1 of 1
  [ 5 posts ] 
  Print view Previous topic | Next topic 
Author Message
quatreduros
PostPosted: Fri Jun 22, 2012 5:33 am 
Offline
Junior Member
Junior Member

Joined: Wed Mar 07, 2012 5:27 pm
Posts: 77
Location: Barcelona
Certs: CCNA, CCNP
Hello,

I have already again a new problem in my CCNP LAB.

My goal is to create a PBR to the traffico since R2 to R4 will be throught to serial link.



R2#show ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

C 192.168.12.0/24 is directly connected, FastEthernet0/0
O 192.168.45.0/24 [110/3] via 192.168.23.2, 00:39:47, FastEthernet1/0 not change to serial link...
C 192.168.24.0/24 is directly connected, Serial2/0
10.0.0.0/24 is subnetted, 1 subnets
C 10.10.10.0 is directly connected, Loopback0
C 192.168.23.0/24 is directly connected, FastEthernet1/0
O 192.168.35.0/24 [110/2] via 192.168.23.2, 00:39:47, FastEthernet1/0 not change to serial link...


Code:
R2#show run
Building configuration...

Current configuration : 1451 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
 ip address 10.10.10.20 255.255.255.0
!
interface FastEthernet0/0
 ip address 192.168.12.2 255.255.255.0
 ip policy route-map TEST
 duplex auto
 speed auto
!
interface FastEthernet1/0
 ip address 192.168.23.1 255.255.255.0
 duplex auto
 speed auto
!
interface Serial2/0
 ip address 192.168.24.1 255.255.255.0
 serial restart-delay 0
 clock rate 64000
!
interface Serial2/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 220
 log-adjacency-changes
 network 192.168.12.0 0.0.0.255 area 0
 network 192.168.23.0 0.0.0.255 area 0
 network 192.168.24.0 0.0.0.255 area 0
!
no ip http server
no ip http secure-server
!
ip forward-protocol nd
!
!
[b]access-list 100 permit ip 10.10.10.0 0.0.0.255 10.10.10.0 0.0.0.255
!
route-map TEST permit 10
 match ip address 100
 set ip next-hop 192.168.24.2[/b] Here have indicated that use serial link

control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 login
!
!
end


Please, where is the problem?

Thanks,


Attachments:
OSPF_topology.jpg
OSPF_topology.jpg [ 56.93 KiB | Viewed 656 times ]
Top
 Profile  
 
Project2501
PostPosted: Fri Jun 22, 2012 5:52 am 
Offline
Post Whore
Post Whore
User avatar

Joined: Thu Apr 17, 2008 6:44 pm
Posts: 6049
Location: Perth, WA
Certs: CCNA
If you don't want it to allow the address don't you use a deny statement with the route-map command? You permit it in the access list to say "yes match this" then in your route-map you say what you want to do with that matched prefixes.

I could be wrong but I thought it was a "if this then do this" statement.

_________________
- Pete
Top
 Profile  
 
prtech
PostPosted: Fri Jun 22, 2012 6:05 am 
Offline
Junior Member
Junior Member

Joined: Mon Mar 05, 2012 8:41 am
Posts: 81
Certs: CCNP, JNCIA-JUNOS, Security+
First of all you don't have a route to 10.10.10.40 because you have a directly connected route on R2 on the same subnet. Put the loopbacks on different subnets.

PBR doesn't change your routing table. Use traceroute to test if your policy works.
Top
 Profile  
 
quatreduros
PostPosted: Sat Jun 23, 2012 5:21 am 
Offline
Junior Member
Junior Member

Joined: Wed Mar 07, 2012 5:27 pm
Posts: 77
Location: Barcelona
Certs: CCNA, CCNP
I have already solve the problem. The wrong was:

"I can't to apply the ACL to generate traffic on router" -->I have to create the loopback interface in the router R1.

attach the topology with the changes.


SUCCESFULL


R1#traceroute 10.10.20.1 source 10.10.10.1

Type escape sequence to abort.
Tracing the route to 10.10.20.1

1 192.168.12.2 24 msec 44 msec 28 msec
2 192.168.24.2 72 msec 36 msec 80 msec
3 192.168.45.1 56 msec * 56 msec


Attachments:
Topology_PBR.jpg
Topology_PBR.jpg [ 55.1 KiB | Viewed 611 times ]
Top
 Profile  
 
Project2501
PostPosted: Sat Jun 23, 2012 10:39 am 
Offline
Post Whore
Post Whore
User avatar

Joined: Thu Apr 17, 2008 6:44 pm
Posts: 6049
Location: Perth, WA
Certs: CCNA
Cheers for replying :)

Sent via mobile internet.

_________________
- Pete
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 5 posts ] 

Board index » Cisco Networking » Dynamips/GNS3 and Labs

All times are UTC - 6 hours [ DST ]

Who is online

Users browsing this forum: Bing [Bot] and 1 guest

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group