We have dual ISP (ISP-A and ISP-B) and utilizting PBR which works just fine. Now I have use case whereas I have a NAT configured on ISP-B (1 to 1) and I want to force traffic to a specific destination out the backup interface. I want to do this to ensure traffic destined for a specific address IP-B is sent out the backup interface. I tried adding a specific route on the VR with the interface and next hop as ISP-B but the path from behind the PAN still takes the primary interface and hop.
I am missing something but not sure what?
I just created a PBR for that source network and the specific destiantion IPand its at the top of my list.
When I traceroute from the core behind the router I see the right path.
traceroute 220.127.116.11 source vlan99
Type escape sequence to abort.
Tracing the route to 18.104.22.168
VRF info: (vrf in name/id, vrf out name/id)
1 10.10.2.5 1 msec 1 msec 1 msec
2 22.214.171.124 4 msec 3 msec 3 msec (DG OF ISP-B)
3 126.96.36.199 6 msec 4 msec 5 msec
4 172.31.167.137 27 msec 23 msec 23 msec
5 172.31.167.46 21 msec 21 msec 20 msec
But from the PAN I don't see packets from that NAT going out or coming in. The provider on the far end sees the packets with the SOURCE IP of my backup interface and not the NAT in question. IE ISP-B interface 188.8.131.52 vs 1 to 1 NAT 184.108.40.206
So something is amiss but I don't know what.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!