ELTEX ESR-10, User Manual, Page: 164 / 440

ESR service routers. ESR-Series. Functionality description. Version 1.12.0
164
Solution:
Create ACL:
esr# configure
esr(config)# ip access-list extended sub20
esr(config-acl)# rule
1
esr(config-acl-rule)# match source-address 10.0 . 20.0 255.255 . 255.0
esr(config-acl-rule)# match destination-address any
esr(config-acl-rule)# match protocol any
esr(config-acl-rule)# action permit
esr(config-acl-rule)# enable
esr(config-acl-rule)# exit
esr(config-acl)# exit
esr(config)# ip access-list extended sub30
esr(config-acl)# rule
1
esr(config-acl-rule)# match source-address 10.0 . 30.0 255.255 . 255.0
esr(config-acl-rule)# match destination-address any
esr(config-acl-rule)# match protocol any
esr(config-acl-rule)# action permit
esr(config-acl-rule)# enable
esr(config-acl-rule)# exit
esr(config-acl)# exit
Create a policy:
esr(config)# route-map PBR
Create rule 1:
esr(config-route-map)# rule 1
Specify ACL as a filter:
esr(config-route-map-rule)# match ip access-group sub20
Specify nexthop for sub20:
esr(config-route-map-rule)# action set ip next-hop verify-availability 184.45 . 0.150 10
esr(config-route-map-rule)# action set ip next-hop verify-availability 80.16 . 0.23 30
esr(config-route-map-rule)# exit
esr(config-route-map)# exit
Rule 1 should provide traffic routing from the network 10.0.20.0/24 to address 184.45.0.150, and in case of its
failure, to address 80.16.0.23. Gateway precedence is defined by metrics values – 10 and 30.
Create rule 2:
esr(config-route-map)# rule 2
Specify ACL as a filter: