H3C Technologies H3C S12500-X Series Switches User Manual

291

[SwitchA-acl-adv-3101] rule permit tcp

[SwitchA-acl-adv-3101] quit

# Configure Node 5 for policy aaa to forward TCP packets to next hop 1.1.2.2.

[SwitchA] policy-based-route aaa permit node 5

[SwitchA-pbr-aaa-5] if-match acl 3101

[SwitchA-pbr-aaa-5] apply next-hop 1.1.2.2

[SwitchA-pbr-aaa-5] quit

# Configure local PBR by applying policy aaa to Switch A.

[SwitchA] ip local policy-based-route aaa

2.

Configure Switch B:
# Create VLAN 10.

system-view

[SwitchB] vlan 10

[SwitchB-vlan10] quit

# Configure the IP address of VLAN-interface 10.

[SwitchB] interface vlan-interface 10

[SwitchB-Vlan-interface10] ip address 1.1.2.2 24

3.

Configure Switch C:
# Create VLAN 20.

system-view

[SwitchC] vlan 20

[SwitchC-vlan20] quit

# Configure the IP address of VLAN-interface 20.

[SwitchC] interface vlan-interface 20

[SwitchC-Vlan-interface20] ip address 1.1.3.2 24

649B

Verifying the configuration

# Telnet to Switch B on Switch A. The operation succeeds.
# Telnet to Switch C on Switch A. The operation fails.
# Ping Switch C from Switch A. The operation succeeds.
Telnet uses TCP and ping uses ICMP. The preceding results show that all TCP packets sent from Switch A

are forwarded to the next hop 1.1.2.2, and other packets are forwarded through VLAN-interface 20. The

local PBR configuration is effective.

363B

Packet type-based interface PBR configuration example

650B

Network requirements

As shown in

1179H

Figure 73

, configure PBR on Switch A to forward all TCP packets received on VLAN-interface

11 to the next hop 1.1.2.2. Switch A forwards other packets according to the routing table.