• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1639
  • Last Modified:

Route traffic to vrf from interface not configured with vrf

Hello-- I have a so-tel phone switch that is connected to a cisco 6500 running ios.  its connected to a vlan not configured with vrf, but it needs to send SOME of its traffic to routes that are in a vrf.

Help--

Thanks!!!  Hooker
0
ck10hh12
Asked:
ck10hh12
  • 3
  • 2
  • 2
  • +1
3 Solutions
 
rfc1180Commented:
>its connected to a vlan not configured with vrf, but it needs to send SOME of its traffic to routes that are in a vrf.

Commonly known as Route Leakage or Inter-VRF routing

Check out section "Route Leaking Between Different VRFs"

http://www.cisco.com/en/US/tech/tk436/tk832/technologies_configuration_example09186a0080231a3e.shtml

Third party:

http://netnix.org/index.php?post_id=4

Billy

0
 
ck10hh12Author Commented:
Thanks for the quick response.  I forgot to mention vrf-lite, fyi.  And can i leak routes to the main routing table from a vrf?
0
 
cstosgaleCommented:
You can use route leaking to to introduce a static route to the default vrf which routes to another VRF. Be careful with this however, as you are effectively compromising security by connecting the two vrfs. The correct way to do this would be to send the traffic from one vrf out a physical interface to a firewall, then back into the switch on another physical interface.

In order to configure route leaking, you can use a static route like this:-

ip route 10.0.0.0 255.0.0.0 vlan 2 192.168.1.1

This assumes that vlan 2 is an interface in a vrf.

You would also need to create a route in the vrf for the return traffic, e.g.:-

ip route vrf test 172.16.1.0 255.255.255.0 vlan 3 192.168.2.1

where vlan 3 is in the default vrf.

See this pdf, this is a pretty good guide: http://www.cisco.com/application/pdf/paws/47807/routeleaking.pdf
0
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
rfc1180Commented:
yes you can, please check out the link:

http://netnix.org/index.php?post_id=4

Billy
0
 
cstosgaleCommented:
vrf-lite is no problem, the articles above apply to this as well. Also, see my example as to how to leake between the default vrf and another vrf.
0
 
ck10hh12Author Commented:
You all are so nice for responding so quickly.  I wish wasnt so thick on this stuff.  It seems complicated from what I have read.  I basically have a vlan configured for vrf and several t1's in this vrf.  There is a phone system that serves not only this customer (in the vrf) but others as well, not in the vrf.  The phone system is going to send a request to the 6500 (with the vrf) for 192.168.3.x and will not find it in the global routing table.  The simplest way to allow this route to be known is...
0
 
rfc1180Commented:
Cisco does not support any type of static routing as the document outlines, I would personally go with the dynamic route. Configure a GRE between the Global and the VRF as http://netnix.org/index.php?post_id=4 outlines as it meets the needs in what you are trying to accomplish.

Billy
0
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
This question has been classified as abandoned and is being closed as part of the Cleanup Program.  See my comment at the end of the question for more details.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Microsoft Exchange Server

The MCTS: Microsoft Exchange Server 2010 certification validates your skills in supporting the maintenance and administration of the Exchange servers in an enterprise environment. Learn everything you need to know with this course.

  • 3
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now