Hmmm... The reason I recommended that is because I think I remember reading
somewhere that the "set ip" command does not work on point-to-point interfaces.
The outbound interface in your config has a /30 assigned to it so maybe it is
seeing it as a p-t-p interface?
Do you have a "less preferred
A 'debug ip policy' should show if it's hitting or not...
IP: s=30.0.0.1 (Ethernet0/0/1), d=40.0.0.7, len 100,FIB flow policy match
IP: s=30.0.0.1 (Ethernet0/0/1), d=40.0.0.7, len 100,FIB PR flow accelerated!
IP: s=30.0.0.1 (Ethernet0/0/1), d=40.0.0.7, g=10.0.0.8, len 100, FIB
policy routed
I dont' think this will work. Here is the formal description of "set
interface" from cisco.com:
This action specifies that the packet is forwarded out of the local
interface. The interface must be a Layer 3 interface (no switchports), and
the destination address in the packet must lie within the I
Have you tried "set interface" instead of "set ip"?
Sent from my iPhone
On Aug 12, 2010, at 3:13 PM, Andrey Khomyakov
wrote:
> I did try an extended ACL and had the same result.
> The way I know that it's not working is that I see these packets arriving on
> a wrong interface on the firewall
I did try an extended ACL and had the same result.
The way I know that it's not working is that I see these packets arriving on
a wrong interface on the firewall and therefor being dropped.
I actually had to open a CR with Cisco and they verified the config and said
nothing is wrong with it. They a
Andrey,
It looks like you're doing everything right here so this might seem
like a dumb question, but how sure are you that it's not working?
In my experience on the 4500, 6500, 3560/3750, those ACL/route-map
counters sometimes don't work because of CEF and friends, and at best
they count number
I bit more explanation: 172.25/16 is a hop away and the packets with that
source IP will enter on Gi2/6 and need to exit Gi2/14.
So it goes like that:
172.25/16 is vlan25 on the student router
Gi0/1 has ip address 192.168.250.2 on the student router
default route is towards 192.168.250.1 on the st
Hey all. I'm trying to setup a routing policy on a cat4503-E with Sup6-E and
for some reason I can't see it taking effect. I'm definitely sourcing
packets from 172.25.0.0/16 (the test machine had 172.25.24.25 address). For
some reason the packets still go out towards the default gateway instead of
8 matches
Mail list logo
