Policy Based Routing on HP Procurve 5406
I have a business case to split certain vLANs between 2 different ISPs. I have attached a very simple diagram of the network layout. I am attempting to configure PBR on the 5406 to push traffic from vLAN 7 to ISP 2 and traffic from vLAN 1 to ISP 1. I have attached the running config of the 5406. Once I apply the policy to vLAN 7, only ping and DHCP traffic appear to flow. From vLAN 7, I can ping other devices on vLAN 1 and from vLAN 1 I can ping devices on vLAN 7. The DHCP server sits on vLAN 1 and is still able to hand out addresses to clients on vLAN 7. I need the vLANs to communicate with eachother as well as separating their Internet traffic.
default gateway on vLAN 1 (10.1.0.0 /16): 10.1.1.252
default gateway on vLAN 7 (10.249.0.0 /16) : 10.249.0.1
default gateway on switch: 10.1.1.252
I am trying to determine what I am missing in the setup of the 5406 to make this scenario work.
Network-Diagram.JPG
5406.txt
default gateway on vLAN 1 (10.1.0.0 /16): 10.1.1.252
default gateway on vLAN 7 (10.249.0.0 /16) : 10.249.0.1
default gateway on switch: 10.1.1.252
I am trying to determine what I am missing in the setup of the 5406 to make this scenario work.
Network-Diagram.JPG
5406.txt
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for commenting. I broke down and opened a case with HP and confirmed that the pbr is set correctly. We verified that the switch was matching packets as expected. They feel they have narrowed the issue down to the Cisco ASA that is handling the connection to ISP 2 - indicating that it may be blocking some traffic to vlan1. I will have to take a closer look at the ASA to see if that is the case. I do like your suggestion of adding a vlan interface to the ASA for each of the subnets, which would then allow me to do away with pbr on the switches.