static default route for specific IP vlan

**tgruber** · 01-20-2016, 12:22 PM

Hi there,

yes, that should be possible. Also your approach to go via policies is correct... I had to convert the following example from specific dst-routing... but it may work.
Also maybe i am overshooting and it may be possible more simply, but thats what i have.

Furthermore please note, that this will not work with SPBm because of several reasons...

First create a ACT that you tell to match on Source IPs:

Code:

filter act 1 create name "Source based routing"
filter act 1 ip srcIp
filter act 1 apply

Then create a ACL which acts on VLAN Incoming traffic and refers to the previous ACT. You also have to add this ACL to the VLANs for which you want to match the traffic.

Code:

filter acl 1 create inVlan act 1
filter acl 1 vlan add 1,2,3,4,5

Finally create a ACE(s) to match the Source Network/IPs

Code:

filter acl 1 ace 1 create name "Range 1"
filter acl 1 ace 1 action permit redirect-next-hop 192.168.0.1
filter acl 1 ace 1 ip src-ip eq 192.168.5.0-192.168.5.255
filter acl 1 ace 1 enable
filter acl 1 ace 2 create name "Range 2"
filter acl 1 ace 2 action permit redirect-next-hop 192.168.0.1
filter acl 1 ace 2 ip src-ip eq 192.168.6.0-192.168.6.255
filter acl 1 ace 2 enable

**vene** · 09-09-2016, 04:00 AM

A much simpler approach would be to use the firewall to permit/deny the traffic.

static default route for specific IP vlan

static default route for specific IP vlan

Comment

Comment