Policy route Summary

 

I. Enable PBR

Route-map xxxx permit 10

Match length min max // minimum package length, maximum package length

Match ip address // ip access-LIST

Set ip precedence // priority

Set ip next-hop // next hop

Set interface // output interface

Set ip default next-hop // if not explicitly specified, the next hop is used by default.

Set default interface // default exit when not explicitly specified

Int s0/0

Ip policy route-map xxxx // used on the interface. Pay attention to the command

Ii. Enable Fast-Switched PBR

In earlier versions of IOS, after PBR is implemented, the process-switched processing mechanism is adopted, with the transmission rate of only-packets per second.

After 12.20, you can perform fast switching for fast forwarding.

The command to enable fast forward is:

Router (config-if) # ip route-cache policy

// Show ip cache policy

// Show ip policy

Note:

1. set ip default next-hop

Set default interface

Not compatible with fast switching.

2. set interface is only used on the point-to-point interface. If there are multiple egress ports, the route table (process based) is queried. However, after fast switching is run, no query is performed, the route is forwarded no matter whether the route exists or not. Errors may occur.

Iii. Enable Local PBR

Router (config) # ip local policy route-map xxxx

// Show ip local policy

Iv. Enable CEF-Switched PBR

It has better results than fast switching. You only need to simply ip the cef.

When activating ip cef, you do not need to activate it again: ip route-cache policy

// Case //

1. Data packets entering asynchronous interface 1 are forwarded to 6.6.6.6 if 1.1.1.1 is originated and no route pointing is specified. If the source is 2.2.2.2 and there is no clear route direction, it will be forwarded to 7.7.7.7. All other traffic is discarded.

Access-list 1 permit 1.1.1.1

Access-list 2 permit 2.2.2.2

Int async 1

Ip policy route-map equal-access

Route-map equal-access permit 10

Match ip address 1

Set ip default next-hop 6.6.6.6

Route-map equal-access permit 20

Match ip ad 2

Set ip default next-hop 7.7.7.7

Route-map equal-access permit 30

Set default interface null0

2. Data Packets originating from 1.1.1.1 are sent to 3.3.3.3 and precedence is set to priority. data packets originating from 2.2.2.2 are sent to 3.3.3.5 and precedence is set to critical.

Note: routine 0

Priority 1

Immediate 2

Flash 3

Flash-override 4

Critical 5

Internet 6

Network 7

Access-list 1 permit 1.1.1.1

Access-list 2 permit 2.2.2.2

Int e1

Ip policy route-map xxxx

Route-map xxxx permit 10

Match ip ad 1

Set ip precedence priority

Set ip next-hop 3.3.3.3

Route-map xxxx permit 20

Match ip ad 2

Set ip precedence critical

Set ip next-hop 3.3.3.5

This article is from the "Mortal World" blog