Users Guide
732 Access Control Lists
Policy-Based Routing Examples
Route-Map with Scheduled Redirection of RFC 1918 Addresses to a Different Next-
Hop
1
Create a time range named “work-hours” the from 7:30 AM to 6:00 PM:
console#config
console(config)#time-range work-hours
console(config-time-range)#periodic weekdays 07:30 to 18:00
console(config-time-range)#exit
2
Define an IP ACL named “subnet-172-16” and permit all accesses on the
subnet during the work-hours time range:
console(config)#ip access-list subnet-172-16
console(config-ip-acl)#permit ip any 172.16.0.0 0.15.255.255
time-range work-hours
console(config-ip-acl)#exit
3
Define an IP ACL named “subnet-192-168” and permit all accesses on the
subnet during the work-hours time range.
console(config)#ip access-list subnet-192-168
console(config-ip-acl)#permit ip any 192.168.0.0 0.0.255.255
time-range work-hours
console(config-ip-acl)#exit
4
Define an IP ACL named “subnet-10-0” and permit all accesses on the
subnet during the work-hours time range.
console(config)#ip access-list subnet-10-0
console(config-ip-acl)#permit ip any 10.0.0.0 0.255.255.255
time-range work-hours
console(config-ip-acl)#exit
5
Define a route-map named “redirect-vlan12” that permits routes in the
three subnets defined earlier. Specify the next hop addresses for all
matching routes.
console(config)#route-map redirect-vlan12 permit 32
console(config-route-map)#match ip address subnet-172-16
subnet-192-168 subnet-10-0
console(config-route-map)#set ip next-hop 12.1.13.1 12.1.14.1
console(config-route-map)#exit