Enable Pbr Configurations On L1, L2 And The Service Leaf Switch; Verifying Pbr Support For Vxlan Bgp Evpn Fabric - Cisco Nexus 7000 Series Configuration Manual

Enable PBR Configurations on L1, L2 and the Service Leaf Switch

Enable PBR Configurations on L1, L2 and the Service Leaf Switch
Step 1 On L1, configure PBR and create an access list:
(config)# feature pbr
• As per PBR rules, traffic from 192.0.2.1 or 2001:DB8::1/64 (Server 2's IP address) is sent to 10.0.0.1
Step 2 On L1, create a route map and set rules:
(config)# route-map equal-access permit 10
(config)# route-map equal-access-v6 permit 10
• An IPv4 route map policy equal-access, and an IPv6 route map policy equal-access-v6 are created.
• The set ip vrf command (introduced in this feature) resolves the next hop IP address for VRF A, for the
Step 3 Enable the route map policy on the BDI:
Policy routing is specified on the interface (bdi10) that receives the packets, and not on the interface from
Note
which the packets are sent.
(config)# interface bdi10
Step 4 The configurations are relevant for BDI10. Similarly, enable PBR configurations for BDI 20 on
L1.
Step 5 Enable PBR configurations on BDI10 and BDI20 on L2 and service leaf switch.

Verifying PBR Support for VXLAN BGP EVPN Fabric

Verify PBR configurations on L1:
Cisco Nexus 7000 Series NX-OS VXLAN Configuration Guide
110
ip access-list 1
permit ip 192.0.2.1 0.0.0.255 host 10.0.0.1
exit
ipv6 access list vlan102-112
10 permit ipv6 2001:DB8::1/64 2001:DB8:0:ABCD::1/64
or 2001:DB8:0:ABCD::1/64 (the load balancer's IP address), respectively.
match ip address 1
set ip vrf A next-hop 10.0.0.1
match ipv6 address vlan102-112
set ip vrf A next-hop 2001:DB8:0:ABCD::1
IPv4 and IPv6 route map policies.
vrf member A
ip policy route-map equal-access
ipv6 policy route-map equal-access-v6
PBR support for the VXLAN BGP EVPN fabric