Enabling Pbr - Foundry Networks Switch and Router Installation And Configuration Manual

Foundry Switch and Router Installation and Configuration Guide
The <num> parameter specifies the instance of the route map you are defining. Each route map can have up to
50 instances. Routes are compared to the instances in ascending numerical order. For example, a route is
compared to instance 1, then instance 2, and so on.
Syntax: match ip address <ACL-num-or-name>
The <ACL-num> parameter specifies a standard or extended ACL number or name.
Syntax: set ip [default] next hop <ip-addr>
This command sets the next-hop IP address for traffic that matches a match statement in the route map.
If you specify default, the route map sets the next-hop gateway only if the Layer 3 Switch does not already have
explicit routing information for the traffic.
Syntax: set [default] interface null0 | pos <portnum> [<portnum>...]
This command redirects the traffic to the specified interface. You can send the traffic to the null0 interface, which
is the same as dropping the traffic. Alternatively, you can send the traffic to a POS interface. You can specify
more than one interface, in which case the Layer 3 Switch uses the first available port. If the first port is
unavailable, the Layer 3 Switch sends the traffic to the next port in the list.
If you specify default, the route map redirects the traffic to the specified interface only if the Layer 3 Switch does
not already have explicit routing information for the traffic.

Enabling PBR

After you configure the ACLs and route map entries, you can enable PBR globally, on individual interfaces, or both
as described in this section. To enable PBR, you apply a route map you have configured for PBR globally or
locally.
Enabling PBR Globally
To enable PBR globally, enter a command such as the following at the global CONFIG level:
BigIron(config)# ip policy route-map test-route
This command applies a route map named "test-route" to all interfaces on the device for PBR.
Syntax: ip policy route-map <map-name>
Enabling PBR Locally
To enable PBR locally, enter commands such as the following:
BigIron(config)# interface ve 1
BigIron(config-vif-1)# ip policy route-map test-route
The commands in this example change the CLI to the Interface level for virtual interface 1, then apply the "test-
route" route map to the interface. You can apply a PBR route map to Ethernet ports or virtual interfaces.
Syntax: ip policy route-map <map-name>
Configuration Examples
The following sections provide configuration examples for the following uses of PBRs:
• Setting the next hop
• Setting the next hop, if the Layer 3 Switch does not have an explicit next hop configured for the traffic
• Sending traffic to a POS interface
• Discarding traffic by sending it to a null interface
Setting the Next Hop
The following commands configure the Layer 3 Switch to apply PBR to traffic from IP sub-nets 209.157.23.x,
209.157.24.x, and 209.157.25.x. In this example, route maps specify the next-hop gateway for packets from each
of these sub-nets.
13 - 28 December 2000