RE: Traceroute and policy based routing

From: Varthis Vassilantonakis (vvas@altec.gr)
Date: Sat Jul 09 2005 - 12:18:34 GMT-3

• Next message: buesink@fma.nl: "ip pim nbma-mode, frame-relay map without broadcast statement"
• Previous message: Spyros Kranis: "test- ignore"
• Maybe in reply to: Varthis Vassilantonakis: "Traceroute and policy based routing"
• Next in thread: ccie2be: "RE: Traceroute and policy based routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Cheers Rob,
 
I eventually made this work.
As you said, policy routing has to be applied on the interface, and local policy is not needed.
The tricky thing was the udp ports (gt 30000) that I needed to permit in my acl.
 
Thanks again,
 
Varthis

________________________________

Ap|: Robin Johnson [mailto:Rob.Johnson@dxi.net]
Apostok^: Sab 9/7/2005 4:33 ll
Pqor: Varthis Vassilantonakis; ccielab@groupstudy.com
H]la: RE: Traceroute and policy based routing

Ive just lab this up
check out the link and then add a new acl and debug the acl whilst
tracerouting
Everything should become crystal:-)
http://www.cisco.com/warp/public/63/ping_traceroute.html#traceroute

Hint (your missing an important protocol in yr acl) as well as policy map on
the interface

Side not to Sila - Packets are policy routed that are generated locally if
you use the ip local policy command!

HTH
Rob

-----Original Message-----
From: Varthis Vassilantonakis [mailto:vvas@altec.gr]
Sent: 09 July 2005 11:45
To: ccielab@groupstudy.com
Subject: Traceroute and policy based routing

Hello group,

One quite tricky question.

In the IEWB Lab 18 Q12.1 there is an example on how we should configure a
router to response with its Loopback address when any other router issue a
traceroute to it.

What if we want to do something slightly different.
What I want is to traceroute from R1 to R5.
R2 has 2 possible ways to reach R5. These are R3 and R4. See the diagram
below:

R1 ------- R2 ------------------R3-----------------
              | |
              | |
              | |
             R4--------------------------------------R5

I want this traceroute to go through R4 and not through R3.

My configuration is the following:

R2:

ip local policy route-map test
!
route-map test permit 10
match ip address 100
set ip next-hop <R4-address connected to R2>
!
access-list 100 permit icmp any any time-exceeded
access-list 100 permit icmp any any port-unreachable

Local policy routing is configured because traceroute is locally generated
by the router each time.

However, I can not get this to work.

Any ideas ?

TIA

Varthis

• Next message: buesink@fma.nl: "ip pim nbma-mode, frame-relay map without broadcast statement"
• Previous message: Spyros Kranis: "test- ignore"
• Maybe in reply to: Varthis Vassilantonakis: "Traceroute and policy based routing"
• Next in thread: ccie2be: "RE: Traceroute and policy based routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Sep 04 2005 - 17:00:29 GMT-3