Configuring a router for virtual router redundancy protocol (VRRP) with policy-based routing (PBR)
To use VRRPVirtual Router Redundancy Protocol with PBR, specify the behaviour of the router interfaces that connect to the LANLocal area network, WANWide Area Network, and the out-of-path Exinda Appliances.
- Launch the router command line interface.
- To enter privileged EXEC (enable) mode, at the prompt run the command:
hostname > enable
The hostname #
prompt appears.
- To enter configuration (config) mode, at the prompt run the commands:
hostname # configure terminal
The hostname (config)#
prompt appears.
- Configure the interface parameters for the switch installed between the router and the out-of-path Exinda Appliances (Gig0/0).
- Specify the interface to configure:
hostname (config)# interface GigabitEthernet0/0
- Set the IPInternet protocol address of the out-of-path Exinda Appliance:
hostname (config-if)# ip address 10.10.10.1 255.0.0.0
- Set the duplex and speed parameters for the interface:
hostname (config-if)# duplex auto
hostname (config-if)# speed auto
- Configure the parameters for the WAN interface (Gig0/1).
- Specify the interface to configure:
hostname (config)# interface GigabitEthernet0/1
- Set the IP address and netmask of the WAN interface:
hostname (config-if)# ip address 64.65.66.1 255.255.255.0
- Set the route map for policy routing to asymmetrical:
hostname (config-if)# ip policy route-map Asym
- Set the duplex and speed parameters for the interface:
hostname (config-if)# duplex auto
hostname (config-if)# speed auto
- Configure the parameters for the LAN interface (Fa0/1).
- Specify the interface to configure:
hostname (config)# interface FastEthernet0/1
- Set the IP address and netmask of the LAN interface:
hostname (config-if)# ip address 172.16.12.1 255.255.0.0
- Set the route map for policy routing with the name
Asym
:hostname (config-if)# ip policy route-map Asym
- Set the duplex and speed parameters for the interface:
hostname (config-if)# duplex auto
hostname (config-if)# speed auto
- Create an access list named
120
that allows devices in the specified IP address range to access the network:
hostname (config)# access-list 120 permit ip 172.16.0.0 0.0.255.255 64.65.66.0 0.0.0.255
hostname (config)# access-list 120 permit ip 64.65.66.0 0.0.0.255 172.16.0.0 0.0.255.255
- Configure the route map to allow access to the routes specified in the access list (120), and route the traffic to the router:
route-map Asym permit 10
match ip address 120
set ip next-hop 10.10.10.100