beautypg.com

Policy-based routing uses of null0 – Brocade Network OS Administrator’s Guide v4.1.1 User Manual

Page 570

background image

set ip next-hop 4.4.4.4

!

6. View the route map application.

sw0# show route-map pulp-fiction

Interface TenGigabitEthernet 3/3

route-map pulp-fiction permit 10

match ip address acl Jules (Active)

set ip vrf pulp_fiction next-hop 3.3.3.3

Policy routing matches: 0 packets; 0 bytes

route-map pulp-fiction permit 20

match ip address acl Vincent (Active)

set ip vrf pulp_fiction next-hop 3.3.3.5 (selected)

set ip next-hop 4.4.4.4

Policy routing matches: 0 packets; 0 bytes

NOTE
For the first stanza (10) created in step 2, the absence of the keyword selected indicates that the
none of the next hops in the list is being used; the packet is being routed by the standard routing
mechanism.

Policy-Based Routing uses of NULL0

NULL0 is a mechanism used to drop packets in policy-based routing.

NULL0 is a mechanism used to drop packets in policy-based routing. If the NULL0 interface is
specified within a stanza and the stanza also contains a “match ACL” statement, only traffic meeting
the match criteria within the ACL is forwarded to the NULL0 interface. If the NULL0 interface is
specified within a stanza that does not contain a “match” statement, the match criteria is implicitly
“match any.”

Examples of using NULL0 include:

• NULL0 in conjunction with a “match” statement.
• NULL0 as a default action of a route map.

Policy-Based Routing and NULL0 with match statements

NULL0 is a mechanism used to drop packets in the Policy-Based Routing (PBR). If the NULL0
interface is specified within a stanza and the stanza also contains a “match ACL” statement, only
traffic meeting the match criteria within the ACL is forwarded to the NULL0 interface. If the NULL0
interface is specified within a stanza that does not contain a “match” statement, the match criteria is
implicitly “match any.”

In this example, the use of the NULL0 interface is only applicable to frames that meet the match
criteria defined in the created ACL, or implicit "permit any" when no explicit match statement is listed
for the stanza.

1. Configure the ACLs.

sw0(config)# ip access-list standard Jules

sw0(conf-ipacl-std)# permit ip 1.1.1.1

sw0(conf-ipacl-std)# deny ip 11.11.11.11

sw0(config)# ip access-list standard Vincent

sw0(conf-ipacl-std)# permit ip 2.2.2.2

2. Create the first stanza of the route map. (The example is using a route-map named pulp_fiction.)

sw0(config)# route-map pulp_fiction permit 10

sw0(config-routemap pulp_fiction)# match ip address acl Jules

Policy-Based Routing uses of NULL0

570

Network OS Administrator’s Guide

53-1003225-04