Foundry Networks Switch and Router Installation And Configuration Manual page 418

Foundry Switch and Router Installation and Configuration Guide
The following commands configure an entry in a route map called "test-route-if-no-gateway". The first entry
(permit 4) matches on the IP address information in ACL 4 above. For IP traffic from sub-net 192.168.1.0/24, this
route map entry sets the next-hop IP address to 192.111.1.1, but only if the Layer 3 Switch does not already have
a gateway configured for the sub-net.
BigIron(config)# route-map test-route-if-no-gateway permit 4
BigIron(config-routemap test-route-if-no-gateway)# match ip address 4
BigIron(config-routemap test-route-if-no-gateway)# set ip default next-hop
192.111.1.1
BigIron(config-routemap test-route-if-no-gateway)# exit
The following command enables PBR by globally applying the route map to all interfaces.
BigIron(config)# ip policy route-map test-route-if-no-gateway
Alternatively, you can enable PBR on specific interfaces, as shown in the following example. The commands in
this example configure IP addresses in the source sub-net identified in ACL 4, then apply route map test-route-if-
no-gateway to the interface.
BigIron(config)# interface ve 2
BigIron(config-vif-1)# ip address 192.168.1.34/24
BigIron(config-vif-1)# ip policy route-map test-route-if-no-gateway
Setting the Output Interface to a POS Interface
The following commands configure a PBR to send all traffic from 209.168.x.x to a POS interface on the Layer 3
Switch.
BigIron(config)# access-list 5 permit 209.168.0.0 0.0.255.255 any
The following commands configure an entry in a route map called "send-to-pos". The first entry (permit 5)
matches on the IP address information in ACL 5 above. For IP traffic from sub-net 209.168.0.0/16, this route map
entry sets the egress port on the Layer 3 Switch to the specified POS interface.
BigIron(config)# route-map send-to-pos permit 5
BigIron(config-routemap send-to-pos)# match ip address 5
BigIron(config-routemap send-to-pos)# set interface pos 4/1
BigIron(config-routemap send-to-pos)# exit
The following command enables PBR by globally applying the route map to all interfaces.
BigIron(config)# ip policy route-map send-to-pos
Alternatively, you can enable PBR on specific interfaces, as shown in the following example. The commands in
this example configure IP addresses in the source sub-net identified in ACL 5, then apply route map send-to-pos
to the interface.
BigIron(config)# interface pos 4/1
BigIron(config-pos-4/1)# ip address 209.168.1.1/16
BigIron(config-pos-4/1)# ip policy route-map send-to-pos
Setting the Output Interface to the Null Interface
The following commands configure a PBR to send all traffic from 192.168.1.204/32 to the null interface, thus
dropping the traffic instead of forwarding it.
BigIron(config)# access-list 6 permit 209.168.1.204 0.0.0.0
The following commands configure an entry in a route map called "file-13". The first entry (permit 6) matches on
the IP address information in ACL 6 above. For IP traffic from the host 209.168.1.204/32, this route map entry
sends the traffic to the null interface instead of forwarding it, thus sparing the rest of the network the unwanted
traffic.
BigIron(config)# route-map file-13 permit 6
BigIron(config-routemap file-13)# match ip address 6
BigIron(config-routemap file-13)# set interface null0
BigIron(config-routemap file-13)# exit
13 - 30 December 2000