Connectivity Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4112F-ON/S4112T-ON

591

592

593

594

595

596

597

598

599

600

Policy routing matches: 84 packets

Policy-based routing per VRF

Congure PBR per VRF instance for both IPv4 and IPv6 trac ows.

Policy-based routing (PBR) enables packets with certain match criteria, such as packets from specic source and destination addresses, to

be re-directed to a dierent next-hop.

You can also use PBR to re-direct packets arriving on a VRF instance to a next-hop that is reachable through a dierent VRF instance. You

can re-direct packets arriving on any VRF instance to the default VRF instance or any other non-default VRF instance.

NOTE: PBR is supported on the default and non-default VRF instances; however, PBR is not supported on the management VRF

instance.

Conguring PBR per VRF

For trac arriving on a VRF instance, you can re-direct this trac to a next-hop on another VRF instance using route-maps. In the route-

map, set the next-hop IP address that is reachable through a dierent VRF instance. When trac that matches certain criteria arrives on a

VRF instance, the route-map conguration enables packets to be re-directed to a next-hop that is reachable over another VRF instance. To

congure PBR per VRF:

1 Create the match ACL rule for IPv4 or IPv6 trac.

{ip | ipv6} access-list access-list-name

2 Permit or deny IPv4 or IPv6 trac from any source with a specic destination.

permit {ip | ipv6} any ip-address

deny {ip | ipv6} any ip–address

3 Congure a route-map to re-direct trac arriving on a specic VRF instance.

route-map route-map-name

4 Enter the IPv4 or IPv6 address to match and specify the access-list name.

match {ip | ipv6} address access-list-name

5 In the route-map, set the IPv4 or IPv6 next-hop to be reached through a dierent VRF instance.

set {ip | ipv6} vrf vrf-name next-hop next-hop-ipv4address

This next-hop-address is reachable through a dierent VRF instance.

NOTE

: If the next-hop is reachable on the specied VRF instance, the packet is redirected; otherwise, the packet

follows the regular routing ow.

6 Apply the route-map to the interface.

interface interface-type

{ip | ipv6} policy route-map route-map-name

7 View the route-map information.

show route-map

OS10(conf-if-vl-40)# do show route-map

route-map test, permit, sequence 10

596

Layer 3