Solved

Understanding Cisco Route-Maps used at default gateway

Posted on 2011-03-07
5
695 Views
Last Modified: 2012-06-21
HI,

I'm wondering if you could enlighten me in regards to Cisco Route-Maps. I've used them many times in the past with success, but never used them to handle the default gateway. In essence, I would like two default gateways. One for 5 specific source IP's to go out one way. The second would be a catch all to send everyone else out the second gateway. Is this possible? I tried the configuration below, but had a static ip route 0.0.0.0 in the mix still and the route-maps didn't work at all. The counts did go up on the route-maps when I did a 'show ip access-list'. Also, are route maps executed in the order of their sequence number? Do you think the below will work?

*below is a excerpt of my configuration. I only included the information I thought was necessary to setup proper router maps*

interface FastEthernet0/1
description Local LAN interface
ip policy route-map external

access-list 190 permit ip host 10.35.209.20 any
access-list 190 permit ip host 10.35.209.21 any
access-list 190 permit ip host 10.35.209.22 any
access-list 190 permit ip host 10.35.209.23 any
access-list 190 permit ip host 10.35.209.24 any
access-list 191 permit ip host any any

route-map external permit 190
 match ip address 190
 set ip next-hop 1.2.3.4

route-map external permit 191
 match ip address 191
 set ip next-hop 4.3.2.1

Thank you!
0
Comment
Question by:First Last
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 34

Accepted Solution

by:
Istvan Kalmar earned 500 total points
ID: 35059657
Hi,

you need to add route:

no route-map external permit 191
ip route 0.0.0.0 0.0.0.0 4.3.2.1


CTRL + Z

clear ip ip cef *
0
 
LVL 1

Author Comment

by:First Last
ID: 35059903
You are saying the route-map is executed before a static route?

So, my overall config would be:

interface FastEthernet0/1
description Local LAN interface
ip policy route-map external

access-list 190 permit ip host 10.35.209.20 any
access-list 190 permit ip host 10.35.209.21 any
access-list 190 permit ip host 10.35.209.22 any
access-list 190 permit ip host 10.35.209.23 any
access-list 190 permit ip host 10.35.209.24 any

route-map external permit 190
 match ip address 190
 set ip next-hop 1.2.3.4

ip route 0.0.0.0 0.0.0.0 4.3.2.1

0
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 35059970
yep!
0
 
LVL 1

Author Closing Comment

by:First Last
ID: 35060304
I'll test the changes tomorrow night. Thank you.
0
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 35060354
your welcome.....:)
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question