Administrator Guide
Configuration Task List for Policy-based Routing
This section explains how to configure PBR on the system.
PBR Exceptions (Permit)
To create an exception to a redirect list, use thepermit command. Exceptions are used when a forwarding decision should be based on
the routing table rather than a routing policy.
The Dell EMC Networking OS assigns the first available sequence number to a rule configured without a sequence number and inserts the
rule into the PBR CAM region next to the existing entries. Because the order of rules is important, ensure that you configure any
necessary sequence numbers.
Never apply the permit statement because the redirect list covers all source and destination IP addresses.
ip redirect-list rcl0
seq 5 redirect 2.2.2.2 ip any any
seq 10 permit ip host 3.3.3.3 any
To ensure the permit permit statement or PBR exception is effective, use a lower sequence number, as shown:
ip redirect-list rcl0
seq 10 permit ip host 3.3.3.3 any
seq 15 redirect 2.2.2.2 ip any any
Apply a Redirect-list to an Interface using a Redirect-
group
IP redirect lists are supported on physical interfaces as well as virtual local area network (VLAN) and port-channel interfaces.
NOTE:
When you apply a redirect-list on a port-channel, when traffic is redirected to the next hop and the destination
port-channel is shut down, the traffic is dropped. However, the traffic redirected to the destination port-channel is
sometimes switched.
To apply a redirect list to an interface, use the following command. You can apply multiple redirect-lists can be applied to a redirect-group.
It is also possible to create two or more redirect-groups on one interface for backup purposes.
Apply a redirect list (policy-based routing) to an interface.
INTERFACE mode
ip redirect-group redirect-list-name test l2–switch
• redirect-list-name is the name of a redirect list to apply to this interface.
• FORMAT: up to 16 characters
• You can use the l2–switch option to apply the re-direct list to Layer2 traffic.
NOTE:
You can apply the l2–switch option to redirect Layer2 traffic only on a VLAN interface. This VLAN interface must
be configured with an IP address for ARP resolution. The Layer2 PBR option matches the layer2 traffic flow. If you un-
configure this option, then the Layer2 traffic is not matched.The Layer3 routing is not affected on the same interface on
which Layer2 PBR is applied. The port from which Layer2 packets egress and the destination MAC are re-written from
static ARP. Layer 2 packets with the re-written destination MAC are forwarded through the outgoing port on the same
incoming VLAN interface. The l2-switch option ensures that the outgoing VLAN and MAC-SA are changed and TTL is
not decremented.
To delete the redirect list from this interface, use the
no ip redirect-group command.
In this example, the list xyz is applied to the 1/1 interface.
Example: Applying a Redirect-list to an Interface
Example: Applying a Redirect-list to an Interface
658
Policy-based Routing (PBR)