PBR using multiple ISP's on 6509

I want to use one ISP for the outgoing traffic for a a specific vlan .if that ISP fails or BGP fails will the outgoing traffic from that vlan takes the other ISP link .

Mostly the answer to your questions depends on how you have configured PBR.
In the most simple case where you have just configured PBR and set the next hop, if the router knows that the next hop is not available then it does not do PBR and will just use the default routing. This probably works ok if the next hop is over a point to point serial interface. Otherwise you probably need to get involved with PBR verify-reachabilty (which gets you into IP SLA etc).
If the router does recognize that the PBR next hop is not reachable (which may require tracking and IP SPA) then the traffic will just use the normal routing table logic.
HTH
Rick

Similar Messages

PBR using dual ISP and single LAN subnet

Hello,
I have 2 ISP connections on the Cisco router 29121 i.e. Leased Line and PPPoe and single LAN subnet
I want to use PBR.
I want to allow ip traffic destined for 1.1.1.1,2.2.2.2,3.3.3.3 ( Fictitious IP) to go through Lease Line
and all other traffic through PPPoe
Please help me to achieve this.
Thanks in advance.

WoW Great Thanks cadet alain
It working as desired.
This is my current config. I just want you help for last thing
If leased line goes down, I want to direct the user to PPPoe
However, if PPPoe, the users should NOT BE directed to leased line
int gi0/0
description << Leased Line >>
ip address 100.100.100.101 255.255.255.252
ip nat outside
no shut
int gi0/2
description << LAN Subnet>>
ip address 10.1.50.1 ip nat inside
ip policy route-map lease
no shut
interface Dialer0
ip address negotiated
ip mtu 1492
ip nat outside
ip virtual-reassembly in max-reassemblies 512
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp authentication pap chap callin
ppp chap hostname XXXXXXXXXXXXXXX
ppp chap password 0 9860
ppp pap sent-username XXXXXXXXXXXXXXX password 0 9860
no cdp enable
interface GigabitEthernet0/1
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
no shut
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 1
access-list 100 permit ip 10.1.50.0 0.0.0.255
route-map lease permit 10
match ip address 100
match interface gi0/0
route-map pppoe permit 10
match ip address 100
match interface dialer 0
ip nat inside source route-map lease interface gi0/0 overload
ip nat inside source route-map pppe interface dialer 0 overload
access-list 101 permit ip 10.10.1.50.0 0.0.0.255 host 1.1.1.1
acess-list 101 permit ip 10.1.50.0 0.0.0.255 host 4.2.2.2
route-map PBR permit 10
match ip address 101
set ip next-hop 100.100.100.102
ip route 0.0.0.0 0.0.0.0 dialer0
ip route 0.0.0.0 0.0.0.0 100.100.100.102

Multiple ISPs & single IP/MPLS/ADSL infrastructure

Actually very soon we'll have an IP/MPLS core network with ADSL access network.
What we are going to do is to make several ISPs to use the IP/MPLS core in order to provide internet to their users.
Can we configure an MPLS VPN for each Service Provider so that it can support the ADSL users from its own Backbone. (I suppose that the MPLS VPN will span several cities, and it will be secure and totally separate from other ISPs MPLS VPNs) .
If so , can an ASDL user choose the ISP that he wants , or the ADSL port will be dedicated for a specific ISP.
Could you provide me with examples for multiple ISPs that use the same IP/MPLS/ADSL infrastructure & what are the all existing(already applied in the real world) senarios ?
Thank You in advance

Mike,
You can definitly do what you described. actually i am a network engineer for an isp that uses exactly that service from a carrier. there are at least 10 more isps on that share this mpls core to reach that carriers dsl customers.
There are few ways i know to do while enabling users to select their isp:
use PPPoE or PPPoA for the dsl users. get those dsl users to terminate at your BRAS (which should also be a PE in some of the options (for example a7301 routers stack). from this point the solution divides to two options:
1. this option is faster but not so acaleable.
In this option you termintae the ppp sessions sends a radius request to your radius server that by the domain name recognizes to which isp the customer belongs to (for example [email protected] vs [email protected]), and forward the request to that isp radius which then authorizes it and within the response sends an vrf selection. then the users belongs to that vrf on your network that belong to that isp.
in this option one dsl user can have severel isp accounts and switch between them by changing the credientials in his ppp software.
2. this options requires a more comples system from the isp but gives him much greater control over his subscribers and saves you a hell of a management burden. this options begin like the previous one with a PPPoE/PPPoA session coming from the dsl users to your BRAS (which doesn't need to be a PE but rather be a CE) however this time the BRAS is configured not the teminate the ppp sessions but to map them (by the domain name) to l2tp tunnels which will terminate in the isp BRAS. in this scenario all isps can share the same vrf since they get the l2tp/ppp seperation of each user session.
It gives he isp many advantages like controlling the addressing, applying serivces etc etc. again users can switch between isps by changing the username@doamin at their ppp software.
The third option is based on service selection devices like cisco ssg. in this option you can use the adsl in 1483b mode (cisco rbe for example).the service selection device is the one that terminates the atm pvcs from the dslam. when the users is trying to access the internet he is presented with captive web page where he is required to authenticate with his isp. this authentication request is then proxied to the right isp (again by the domain) which replys with a radius response that include the vrf assignment. again users can switch between isps any time.
I hope this helps.
If you require further clarifications you are welcome to contact me at: [email protected]
BR
Amos Rosenboim

Multiple ISPs

I have multiple ISPs one is Cable and the other is a bonded T-1 on the carriers side. I have 2 5525x ASA's and want to configure Active Active failover over. Would I need to enable Multiple Context groups inside the Active Active configurations to allow multiple ISP's?
How would this normally be done?
I want to use the 2nd ISP as my wireless guest network since it is a slower network.

It's more difficult to load balance between ISPs without owning your public networks and ASN. Aside from using multiple contexts, you could try using 2 independent firewalls, but put a router (or pair of routers with HSRP) on the inside interface of the firewalls to act as a gateway for clients. You would then divide the source networks up and use a route map to send traffic from network A to firewallA/gatewayA and network B to firewallB/gatewayB. That way all return traffic would also be load balanced. However, this wouldn't address any traffic sourced from the Internet to sites you might be hosting. If you are hosting public sites, I don't see any way to load balance that traffic without using BGP, except for LISP possibly. And to have failover, you'd need to enable tracking in your route map so if one of the firewalls would suffer a hardware failure or an ISP goes down you could then use the 2nd firewall/ISP. This however, would not provide for stateful failover, such as that provided by a failover pair configuration on the firewalls.
http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/locator-id-separation-protocol-lisp/qa_c67-582925.html

How do I use multiple addresses at one time?

Shouldn't the Adobe server page that allows for the entry of a recipients address tell users how to add another address? Do we separate them with semicolons? Commas? Or is it even possible to use multiple addresses?

Yes, Adobe Send.
Unfortunately, it is NOT spelled out on the page where you enter email addresses of recipients, nor is it revealed if you click on the question mark box by email address.
Frank
=========================
Frank Schmalleger, Ph.D.
Distinguished Professor Emeritus
The University of North Carolina
Website: www.schmalleger.com
Amazon Author Page: http://tinyurl.com/78nly4s
Mailing Address:
Ste 203-332
4300 S. U.S. Hwy 1
Jupiter, FL 33477
Ph. 561.225.1760

How do I use multiple accounts on the same Mac with Apple TV2?

I have home sharing turned on in two separate accounts on a single MacPro. When I am logged into both accounts, I can see both accounts' iTunes Libraries available in the AppleTV2. However, when I try to open each account iTunes Library in the AppleTV2, only one account will open (whichever one I logged into first). (In other words, I log into Account1 then open iTunes with Home Sharing On, then log into Account2 (while Account1 is still logged on), open iTunes with Home Sharing On. AppleTV2 shows Account1 Library and Account2 Library under Computers, but will only load Account1 Library. Account2 Library will just cause AppleTV2 to search for the Library then give an error.) How come AppleTV2 can see both Libraries but will only open one Library? How can I fix this?
Thanks,
zpockets

Thank you for replying. Both of the accounts are Admin accounts. The Libraries are kept in the user/music/itunes/itunes media folder on each account. However, I do use multiple iTunes Libraries on my Account1. One of the Libraries I use in Account1 is on a separate internal HD. However, the other Libraries I use in Account1 are stored in user/music/itunes/itunes media folder on the main HD (which hosts both Account1 and Account2). It doesn't seem to matter whether I am using an iTunes Library on an external drive or the main drive in Account1, I still get the same problem: only account1 library will load. AppleTV sees that the Account2 Library is there, but it won't load it.

How do I use multiple librarys to organize my projects

Is there a way to use multiple libraries to organize my projects. I don't like having all my projects in one library. I'd like separate libraries for Family_Movies, BirthdaysandHolidays, Vacations, etc...
Thanks.

You can create multiple folders in your Project Library. I have a folder for each year. Then within the year, if I make several videos on one subject (say a trip to Europe) I will create sub folders within the year.
There is no limitation on what you name your Folders, so you could name them Family Movies, Vacations, Birthdays, etc.
When you are in the Project Library View, you can click FILE/NEW FOLDER. For a subfolder, click on the parent folder and then click New Folder.
Message was edited by: AppleMan1958

Help using multiple iphones and ipods on itunes

Okay, is there any simple way to use multiple apple products thru itunes. I can log in on my account and sync my iphone/ipod, then I log out and log back in with my daughter's account info. I plug her itouch in and it wants to read all of my apps(some apps we both have on our devices). Have problems with music sharing as well. Still a PC user. Get very frustrated with itunes. spend way too much time trying to do things that should be simple. please help! Thank you!

Are you using method 1 with different windows user accounts?
http://support.apple.com/kb/HT1495
Sounds like you are currently using method 2 and not happy with it.

How to use multiple ipods on one account

I have an Ipod classic and just bought my sons two nano's how do I use these on the same account without changing my account info?

Take a look here:
How to use multiple iPods with one computer
Forum Tip: Since you're new here, you've probably not discovered the Search feature available on every Discussions page, but next time, it might save you time (and everyone else from having to answer the same question multiple times) if you search a couple of ways for a topic, both in the relevant forums, in the User Tips Library and in the Apple Knowledge Base before you post a question.
Regards.

Can i use multiple ipods on one account

How do i use multiple ipods on one account so that we can share the music that we own and has been downloaded from cd's

Just import the CD music into the libraries used by the different devices. Yo can use Home Sharing
Understanding Home Sharing
Troubleshooting Home Sharing
CD music is not locked to any account

Using multiple desktops with a 4 finger swipe on a Mac Book Pro running Lion- is there a way that I can allow Safari open on several but not all?? Looks like I can set it for one but not others. All, one, or nothing

Using multiple desktops with a 4 finger swipe on a Mac Book Pro running Lion- is there a way that I can allow Safari open on several but not all?? Looks like I can set it for one but not others. All, one, or nothing

Hey Eric,
Thanks for taking the time. Unfortunately no that does not solve it. Same as swipe it will get me there and it will show separate programs spaced out. The issue I am having is that all my open word files are bunched up in a pile on top of each other. I can see the edges of each one but I want them to be separated from each other enough that I can visually identify what file is what.
Again, thanks for trying, it is appreciated.

Using multiple 'and' conditions in a SQL query

Is it possible to reduce the SQL required to query using multiple 'and' conditions, e.g. I have a query like the following:
select stat.personal_id, appt.username, appt.password, apps.rgn_apt_id, apps.apy_apn_id
from apy_ast_application_status stat, rgn_usr_user appt, rgn_aps_applications apps
where stat.apy_apn_id = apps.rgn_apt_id
and apps.rgn_apt_id = appt.rgn_apt_id
and stat.application_completed is null
and stat.application_started_date > '01-MAY-11'
and stat.amount_paid is null
and stat.personal_details = 'C'
and stat.further_details = 'C'
and stat.education = 'C'
and stat.employment = 'C'
and stat.personal_statement = 'C'
and stat.choices = 'C'
and stat.reference = 'C'
and stat.student_finance = 'C'
Is there a way, to reduce all the multiple 'and' queries, to be read from say one line? If you know what I mean.......

Ah, Ok this looks nice, thanks very much. It doesn't quite run as is because the stat.amount_paid query value is 'is null', while the others are 'C'. I tried amending the relevant line to various versions of the following:-
in (select 'is null' 'C','C','C','C','C','C','C','C' from dual)
which doesn't work.
I can get the following to work so I am assuming that the it is not possible to use different query values within the brackets of the 'in (select....' statement?
select stat.personal_id, appt.username, appt.password, apps.rgn_apt_id, apps.apy_apn_id
from apy_ast_application_status stat, rgn_usr_user appt, rgn_aps_applications apps
where stat.apy_apn_id = apps.rgn_apt_id
and apps.rgn_apt_id = appt.rgn_apt_id
and stat.application_completed is null
and stat.application_started_date > '01-MAY-11'
and stat.amount_paid is null
and (stat.personal_details, stat.further_details, stat.education,
stat.employment, stat.personal_statement, stat.choices, stat.reference, stat.student_finance)
in (select 'C','C','C','C','C','C','C','C' from dual)
Thanks for everybodys help - the suggested alternatives seem so much more elegant

How do I use multiple VPP accounts in a school system with 1 Profile manager server?

I have 40 schools with their own money they want to spend on apps. I need these accounts to be seperate. We are registered in the Device enrollment program and are using Apple's profile manager to distribute VPP apps. In the DEP website you can add existing vpp admins. I had hoped when these accounts purchased apps, the apps would show up in Profile Manager which uses the master Apple ID, but this didn't happen. Anyone know what the correct process is for doing this?

If you haven't found the answer: You have to install the correct token for each account. Apple Servers, as far as I know, do not support using multiple tokens at once. As a result, you will have to swap out each of the 40 tokens anytime anyone wants to buy something then assign it to a user then push the app.
Or just buy it with a redemption code and give that code to your users.

I created an Apple ID using my ISP Email when I registered at the Store/Apple Support Communities/iTunes/Face Time and it does not work in iChat. Why Not ?

Question:-
I created an Apple ID using my ISP Email when I registered at the Store/Apple Support Communities/iTunes/Face Time or other portal and it does not work in iChat. Why Not ?
Answer:-
For a Name to work in iChat it has to be an Valid AIM screen Name.
Only Apple IDs from the @mac.com ending names registered here and the Mobileme (@Me.com ending) names are Valid with the AIM service as well as being Apple IDs
(I am still working on info about registering with iCloud at the moment but if this does give you an @Me.com email it may well be a valid AIM name as well)
NOTES:-
The @mac.com page works by linking an external (Non Apple) email with a @mac.com name.
This External Email cannot be one linked to an Existing Apple ID (you have to use a second email or register at AIM )
The options at AIM are to use your existing email or create new name and link the existing only for Password recovery
MobileMe (@me.com ending names) were valid Emails addresses, Apple IDs AND a Valid AIM Screen Name
@mac.com names look like emails but are only Apple IDs and iChat/AIM Valid Screen Names.
The AIM registration page seems to be pushing you to register [email protected] This is relatively new and I have not followed through the pages to find out if it a valid AIM email (Previously you could register a name without an @whatever.com suffix)
8:16 PM Friday; June 10, 2011
Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
 G4/1GhzDual MDD (Leopard 10.5.8)
 MacBookPro 2Gb( 10.6.7)
 Mac OS X (10.6.7),
"Limit the Logs to the Bits above Binary Images."  No, Seriously

Question:-
So I have my current [email protected] email in iChat as I thought as I had linked that to an Apple ID it was a Valid iChat Name. It keeps coming up with a UserName or Password Invalid message. What do I do next ?
Answer:-
Open iChat
Go to the Menu under the iChat name in the Menu Bar and then Preferences and then Accounts in the new window.
Commonly written as iChat > Preferences > Accounts as directions/actions to take.
If it displays with a Yellow running name in the list you have a choice.
Either register it at AIM (I would use a different password to the ISP Login) and then change the password only in iChat (It may take you to confirm any Confirmation email from AIM first) in iChat > Preferences > Accounts
Or you register a new Name at AIM (Or at @mac.com) and enter that (details below)
If you have a Blue Globe name (@mac.com) that will not Login the chances are that it the password that is the issue.
Apple lets you create longer passwords than can be used with the AIM Servers.
Change the Password at iForgot to no more than 16 characters.
Then change the password in iChat as details above.
Adding a new Account/Screen Name in iChat (that is valid with the AIM servers)
Open iChat if not launched.
Go to iChat Menu > Preferences > Accounts
Click the Add ( + ) Button at the bottom of the list.
Choose in the top item drop down either @Mac.com or AIM depending on what you registered
Add the name (with @mac.com the software will add the @mac.com bit)
Add in the password. (If you don't add it now iChat will ask you each time you open it)
Click Done.
The Buddy List should open (New Window)
The Accounts part of the Preferences should now have the new name and you should be looking at the details.
You can add something in the Description line which will then title the Buddy List (Useful when you have two or more names) and make it show up as that in the iChat Menu > Accounts and the Window Menu of iChat when logged in.
You can then highlight any other Account/Screen Name you don't want to use and use the Minus ( - ) Button to delete it.
8:39 PM Friday; June 10, 2011
Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
 G4/1GhzDual MDD (Leopard 10.5.8)
 MacBookPro 2Gb( 10.6.7)
 Mac OS X (10.6.7),
"Limit the Logs to the Bits above Binary Images."  No, Seriously

New 13" Macbook Pro trying to connect to a Panasonic VIERA TC-L42U30 as second monitor. I've used multiple hdmi-thunderbolt/mini displayport adapters and multiple hdmi cables and still no success. The Macbook does not sense the second monitor (TV). Help?!

I've been a Mac since 2008, so I know my way around the system pretty well. This issue, however, has me stumped. I had an iMac until now and only now am I experiencing some difficulty with my new MacBook Pro. The model I have is the newest 13" Macbook Pro model and I'm trying to connect a Panasonic VIERA TC-L42U30 42" HDTV as a second monitor via the Thunderbolt port.
It worked the first two times and hasn't worked since, after 10-15 attempts with different configurations, turning things on n off, restarting the mac, unplugging the cables, adapters, TV, resetting the P RAM, etc... I've used multiple hdmi-thunderbolt/mini displayport adapters and multiple hdmi cables and still no success. No matter what I do, the Macbook does not sense the TV as a second monitor anymore.
I took the MacBook Pro to the Apple Store, and their "genius" there had it working fine with a DVI connection to a regular monitor. The Panasonic TV I have has HDMI connections and one VGA connection which does not support HD, but no DVI option. I want an HD connection to mirror or extend my MacBook Pro screen. At the Apple Store, they didn't have a Thunderbolt/Mini DisplayPort to HDMI adapter, so he could not try that out for me.
Anyone else have this configuration or another similar one with a Panasonic HDTV?
Ideas? Suggestions? Anything?! Help!!
P.S. I'm running Mountain Lion, if that wasn't already obvious. Everything is up to date in my App Store as well.
Thanks!

Hi There,
I have had the exact same issue but with a projector.
The issue lies with Mountian Lion 10.8.2.
I tried many a combination with no luck to get HDMI working.
Took my mac into the apple store and came to the conclusion it was the software, so I asked them to install 10.8 onto it (this is destructive so a backup is a must)
Bought my macbook home and voila, now displaying through my projector.
There is a small graphics update after 10.8.1 which seems to be the cause.
Hope this helps.
Thanks.

PBR using multiple ISP's on 6509

Similar Messages

Maybe you are looking for