Support User Manuals

Dell FCX624-S Laptop User Manual

Open as PDF

of 1494

PowerConnect B-Series FCX Configuration Guide 589

53-1002266-01

Policy-based routing (PBR)

16

PowerConnect(config)#access-list 50 permit 209.157.23.0 0.0.0.255

PowerConnect(config)#access-list 51 permit 209.157.24.0 0.0.0.255

PowerConnect(config)#access-list 52 permit 209.157.25.0 0.0.0.255

The following commands configure three entries in a route map called “test-route”. The first entry

(permit 50) matches on the IP address information in ACL 50 above. For IP traffic from subnet

209.157.23.0/24, this route map entry sets the next-hop IP address to 192.168.2.1.

PowerConnect(config)#route-map test-route permit 50

PowerConnect(config-routemap test-route)#match ip address 50

PowerConnect(config-routemap test-route)#set ip next-hop 192.168.2.1

PowerConnect(config-routemap test-route)#exit

The following commands configure the second entry in the route map. This entry (permit 51)

matches on the IP address information in ACL 51 above. For IP traffic from subnet

209.157.24.0/24, this route map entry sets the next-hop IP address to 192.168.2.2.

PowerConnect(config)#route-map test-route permit 51

PowerConnect(config-routemap test-route)#match ip address 51

PowerConnect(config-routemap test-route)#set ip next-hop 192.168.2.2

PowerConnect(config-routemap test-route)#exit

The following commands configure the third entry in the test-route route map. This entry (permit

52) matches on the IP address information in ACL 52 above. For IP traffic from subnet

209.157.25.0/24, this route map entry sets the next-hop IP address to 192.168.2.3.

PowerConnect(config)#route-map test-route permit 52

PowerConnect(config-routemap test-route)#match ip address 52

PowerConnect(config-routemap test-route)#set ip next-hop 192.168.2.3

PowerConnect(config-routemap test-route)#exit

The following command enables PBR by globally applying the test-route route map to all interfaces.

PowerConnect(config)#ip policy route-map test-route

Alternatively, you can enable PBR on specific interfaces, as shown in the following example. The

commands in this example configure IP addresses in the three source subnets identified in ACLs

50, 51, and 52, then apply route map test-route to the interface.

PowerConnect(config)#interface ve 1

PowerConnect(config-vif-1)#ip address 209.157.23.1/24

PowerConnect(config-vif-1)#ip address 209.157.24.1/24

PowerConnect(config-vif-1)#ip address 209.157.25.1/24

PowerConnect(config-vif-1)#ip policy route-map test-route

Setting the output interface to the null interface

The following commands configure a PBR policy to send all traffic from 192.168.1.204/32 to the

null interface, thus dropping the traffic instead of forwarding it.

PowerConnect(config)#access-list 56 permit 209.168.1.204 0.0.0.0

The following commands configure an entry in a route map called “file-13”. The first entry (permit

56) matches on the IP address information in ACL 56 above. For IP traffic from the host

209.168.1.204/32, this route map entry sends the traffic to the null interface instead of

forwarding it, thus sparing the rest of the network the unwanted traffic.

PowerConnect(config)#route-map file-13 permit 56

PowerConnect(config-routemap file-13)#match ip address 56

PowerConnect(config-routemap file-13)#set interface null0

PowerConnect(config-routemap file-13)#exit

previous next