This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

Route specific traffic out backup ISP?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Route specific traffic out backup ISP?

Go to solution
drewdown
L4 Transporter

‎08-31-2018 10:52 AM - edited ‎08-31-2018 10:53 AM

We have dual ISP (ISP-A and ISP-B) and utilizting PBR which works just fine.  Now I have use case whereas I have a NAT configured on ISP-B (1 to 1) and I want to force traffic to a specific destination out the backup interface.  I want to do this to ensure traffic destined for a specific address IP-B is sent out the backup interface.  I tried adding a specific route on the VR with the interface and next hop as ISP-B but the path from behind the PAN still takes the primary interface and hop.  

 

I am missing something but not sure what?  

0 Likes Likes
13 REPLIES 13

Go to solution
BPry
Cyber Elite
Cyber Elite
In response to drewdown

‎08-31-2018 12:46 PM

@drewdown,

It'll kill traffic depending on what the identified application is; however if you kept sending the traffic it would continue to use the established session which is what you were running into. Going forward if you want to verify that the traffic isn't running on an old session use the 'clear session all filter' command from the CLI and you can specify everything you did with the test command to ensure all traffic will be utilizing the new policies. 

Go to solution
drewdown
L4 Transporter
In response to BPry

‎08-31-2018 12:47 PM

Thanks..

 

BTW I don't see anything your first post regarding PBR, its like you attached or pasted a pic but I dont see anything.  

0 Likes Likes

Go to solution
BPry
Cyber Elite
Cyber Elite
In response to drewdown

‎08-31-2018 06:31 PM

@drewdown,

I didn't include a configuration example for PBF in my first post, however if you need one just let me know ... also stop calling it PBR. Its Policy Based Forwarding now bud, you leave those Cisco/Juniper terms where you found 'em 😉 

0 Likes Likes

Go to solution
drewdown
L4 Transporter
In response to BPry

‎09-02-2018 12:38 PM

@BPry Old habits die hard I guess.  And PA could have just as easily called it PBR.  🙂   

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks