Steps
- Create an ACL to capture interesting traffic
(config)# ip access-list extended CLIENT1
(config-ext-nacl)# permit ip host 192.168.1.20 any log
(config)# ip access-list extended CLIENT2
(config-ext-nacl)# permit tcp host 192.168.1.21 any eq telnet
(config-ext-nacl)# permit tcp host 192.168.1.21 any eq 443
- Create a route-map utilising the ACL
(config-route-map)# match ip address <acl>
(config-route-map)# set ip next-hop <ip>
- Enable policy-based routing on an interface
(config-if)# ip policy route-map <name>
OR
Apply the route map to traffic sourced from the router itself
(config)# ip local policy route-map <name>
router# show route-map
No comments:
Post a Comment