Home > Policy Based Routing Sim

Policy Based Routing Sim

February 8th, 2019 in Lab Sim, LabSim Go to comments

Question

Company TUT has two links to the Internet. The company policy requires that web traffic must be forwarded only to Frame Relay link if available and other traffic can go through any links. No static or default routing is allowed.

BGP_Policy_Based_Routing_Sim.jpg

 

Answer and Explanation:

Notice: The answer and explanation below are from PeterPan and Helper.Please say thank to them!

All the HTTP traffic from the EIGRP Network should go through Frame Relay link if available and all the other traffic should go through either link.
The only router you are able to administrate is the Border Router, from the EIGRP Network you may only send HTTP traffic. As the other people mentioned, actually it is not a BGP lab. You are not able to execute the command “router bgp 65001”

1) Access list that catches the HTTP traffic:
BorderRouter(config)#access-list 101 permit tcp any any eq www

Note that the server was not directly connected to the Border Router. There were a lot of EIGRP routes on it. In the real exam you do not know the exact IP address of the server in the EIGRP network so we have to use the source as “any” to catch all the source addresses.

2) Route map that sets the next hop address to be ISP1 and permits the rest of the traffic:
BorderRouter(config)#route-map pbr permit 10
BorderRouter(config-route-map)#match ip address 101
BorderRouter(config-route-map)#set ip next-hop 10.1.101.1
BorderRouter(config-route-map)#exit

(Update: We don’t need the last command route-map pbr permit 20 to permit other traffic according to Cisco:

“If the packets do not meet any of the defined match criteria (that is, if the packets fall off the end of a route map), then those packets are routed through the normal destination-based routing process. If it is desired not to revert to normal forwarding and to drop the packets that do not match the specified criteria, then interface Null 0 should be specified as the last interface in the list by using the set clause.”

Reference: http://www.cisco.com/en/US/products/ps6599/products_white_paper09186a00800a4409.shtml)

Note: We don’t need to use IP SLA to track the next-hop IP address as the “set ip next-hop” did this. From this link: https://www.cisco.com/c/en/us/support/docs/ip/ip-routed-protocols/47121-pbr-cmds-ce.html
“The set ip next-hop command verifies the existence of the next hop specified, and…
+ If the next hop exists in the routing table, then the command policy routes the packet to the next hop.
+ If the next hop does not exist in the routing table, the command uses the normal routing table to forward the packet.”
So if the next-hop 10.1.101.1 goes down the PBR will use normal routing table.

3) Apply the route-map on the interface to the server in the EIGRP Network:
BorderRouter(config-route-map)#exit
BorderRouter(config)#int fa0/0
BorderRouter(config-if)#ip policy route-map pbr
BorderRouter(config-if)#exit
BorderRouter(config)#exit

4) There is a “Host for Testing”, click on this host to open a box which includes a button named “Generate HTTP traffic”. Click on this button to generate some packets for HTTP traffic. Jump back to the BorderRouter and type the command “show route-map”.

BorderRouter#show route-map

In the output you will see the line “Policy routing matches: 9 packets…”. It means that the route-map we configured is working properly.

Note: We have posted a Policy Based Routing lab on GNS3 similar to this sim with detailed explanation, you can read it here.

Other lab-sims on this site:

EIGRP Stub Sim

OSPF Sim

EIGRP OSPF Redistribution Sim

IPv6 OSPF Virtual Link Sim

EIGRP Simlet

Comments
Comment pages
  1. tkasali
    May 21st, 2018

    Hello to all,
    Can you please send me the latest dumps for exam 300-101?
    Email :kasali_temitayo @ yahoo.com

  2. KBL
    May 23rd, 2018

    Thanks PeterPan and Helper. I appreciate your hard work and support.

  3. Marine
    May 28th, 2018

    Hello !

    Somebody has the last dump for exam 300-101
    Email: {email not allowed}

    Regards.

  4. Marine
    May 28th, 2018

    Hello !

    Somebody has the last dump for exam 300-101
    Email: tank 2567@ hotmail.com

    Regards.

  5. 874dsadasdas
    May 30th, 2018

    NEW 100% valid CCNP Exam questions

    dumps
    pro
    dot
    com

  6. Anonymous
    May 30th, 2018

    I believe there should be a “(config-router)#route-map pbr permit 20” statement added to the BorderRouter so that other traffic is not denied?

  7. RealDUMPS
    June 6th, 2018

    latest dumps.
    100% Guaranteed VALID passing Material

    CCNA 200-125 LAtest Dumps
    CCNP ROUTE 300-101 Latest Dumps
    CCNP SWITCH 300-115 LAtest Dumps
    CCNP TSHOOT 300-135 LAtest Dumps
    CCIE R&S 400-101 LAtest Dumps

    http://docs.google.com/document/d/e/2PACX-1vRPAVbrqViyQ-v6aViLk-JBdX3XKLatFEASJha1zkubS_Ehy6eEqZc0xl-P1ixOSKZv0gyfMWdwW6E8/pub

    Call 24/7 for instant help
    001 (347) 696-4896

  8. Sui generis
    June 13th, 2018

    Hello everyone, please I’m in dire need of the latest CCNP ROUTE 300-101 dumps.
    Kindly send to {email not allowed}

    Gratitude.

  9. JanTcell
    June 20th, 2018

    Hello All, I will take the route 300-101 exam in next week. Could someone please send me the current dump?turkcell dat caner at gmail

  10. nan
    July 15th, 2018

    hello there is someone here has the lastest dump?please share .thanks

  11. Twitter Duo
    August 18th, 2018

    i did pass the CCNP ROUTE 300-101 yesterday, 8xx/1000.
    There were a couple of new questions i did meet. 2 new drag and drop questions and 1 sim question. email me kiptalam54 at gmail dot com

  12. Cisco engineer
    September 10th, 2018

    Hello.
    Please could you send me actual question to sys.yuriy at gmail.com.
    Thanks a lot.

  13. Cyrax
    September 11th, 2018

    Iam going to take exam in 9 days, i noticed in full describtion that it states “IT policy requires all outbound HTTP traffic use frame relay link when it is available.” Doesnt this require ip sla configuration either? Can somebody comfirm?

  14. Cyrax
    September 11th, 2018

    Iam sorry i missed the “note” nvm than…

  15. Anonymous
    September 14th, 2018

    (Update: We don’t need the last command route-map pbr permit 20 to permit other traffic according to Cisco:

    “If the packets do not meet any of the defined match criteria (that is, if the packets fall off the end of a route map), then those packets are routed through the normal destination-based routing process. If it is desired not to revert to normal forwarding and to drop the packets that do not match the specified criteria, then interface Null 0 should be specified as the last interface in the list by using the set clause.”

    This it true, and i wouldn’t add it on the exam, but in a lab if you add that clause, when you do a show ip route-map, the counters will increase for normal traffic – helps verify everything is working

  16. Anonymous
    September 14th, 2018

    never mind above post, doesn’t increase counters – nothing to match!!!

  17. Anonymous
    September 17th, 2018

    I give all commands but at the end when i give
    show ip route-map nothing match. why?

  18. Espeon
    September 20th, 2018

    “For the purpose of practice in a GNS3 environment utilize “echo” instead of “www” in your access list and just ping ISP2 from “Host_For_Testing” to verify accurate completion of task”
    try with this comment in gns3 sim file. good luck.

  19. Espeon
    September 20th, 2018

    you may give original commands(“www”) and test with tel 10.1.102.1 80
    it will generate http traffic, so the matching counters would be increase itk

  20. Hadreth
    September 24th, 2018

    Just made it with a passing 922 :) Networkkingg and spoto questions still 100% valid. Of course made my own research and verification of the answers. I got 67% in network principles and 67% in VPN technologies. Those were my two lower scores.

    LABS: EIGRP Stub, OSPF/EIGRP Redistribution, OSPF Virtual-Link

    Thank you netwrokkkingg . Thankyou digitaltut.

    Good luck

  21. Hatebreeder
    September 24th, 2018

    Doesnt web traffic include https as well? Shouldnt we add tcp port 443 as well?

  22. Anonymous
    September 27th, 2018

    the question says web traffic, the picture only states http – but could be a good thing to look out for on a test.

  23. Anonymous
    October 9th, 2018

    Thanks Peter Plan and Helper

  24. ertfgf
    October 10th, 2018

    There are a lot of testers and professional teachers to study and discuss together, as well as the latest test resources. Candidates who need the test can come and see. ht tp:
    / /kks.me/aK2La

  25. CCNP_Bound
    November 1st, 2018

    HTTP only: The requirement is: All the HTTP traffic from the EIGRP Network should go through Frame Relay link if available and all the other traffic should go through either link. HTTPS is not a part of the requirement so 443 does not need to be a part of the access-list or PBR.

  26. Zamtaker
    November 10th, 2018

    Hmm..

    I dont know why, but my routemap is not getting matches.. and yes, i used echo instead of www or 80

    a trace route shows the traffic just going using the routing table.. bug?

  27. Pranav_Ballal
    November 24th, 2018

    Why are You applying route-map to the redistribution ??

    Won’t it work the same without it ?

  28. Team_Stark
    December 9th, 2018

    HEY GUYS!
    I have a CCNP ROUTE DUMPS(SEPTEMBER 28 2018 UPDATED)

    LET’S TRADE! I NEED THE LATEST CCNA R&S DUMPS!
    EMAIL ME FIRST THE DUMPS AT THE FOLLOWING EMAIL:
    darksidius101(at)gmail(dot)com

    I WILL CHECK IT AND REPLY TO YOU BEFORE SATURDAY(Dec. 17, 2018)

    IT IS OK IF YOU DO WON’T TRUST ME :)

  29. NOC
    December 24th, 2018

    Guys

    how many simulation in ccnp route exam , please let me know for those who are done taking the exam. Thanks in advance

  30. Anonymous
    January 21st, 2019

    guys,
    requesting latest ccnp route dumps.
    send to {email not allowed}

  31. ClassicCollection
    January 21st, 2019

    @Zamtaker – try adding this ACL: access-list 101 permit icmp any any. Afterward, you should see some matches in the Policy Routing matches: 5 packets…

  32. SW
    January 22nd, 2019

    Hi Guys, Hope you are fine… Can you please assist me in order to get CCNP ROUTE dumps.

    My email is {email not allowed}

    Thanks in advance for the attention & consideration.

  33. SW
    January 22nd, 2019

    Hi Guys, Hope you are fine… Can you please assist me in order to get CCNP ROUTE dumps.

    smkwarsi(at)hotmail(dot)com

    Thanks in advance for the attention & consideration.

  34. castic
    February 6th, 2019

    Hi Guys! Can you please send the copy of latest CCNP route dumps here.
    klm_ger(at)yahoo(dot)com(dot)ph.

    Thank you so much for the help.

  35. Cis_GO1
    February 6th, 2019

    Passed the CCNP Route Exam. Labs were PBR, OSPF SIM with virtual-links and OSPF-EIGRP route redistribution. D & D were OSPF, MOPP, BGP. There was about 7 questions that I had not seen in dumps. Many 9 TUT/Digital TUT questions were accurate.

  36. Loopback
    February 8th, 2019

    Hi Bros,

    Need your help.

    If anybody has actual ROUTE dumps. Please send me one.

    pizerocool(at)gmail.com

    All best regards,
    Loopback

  37. Mr. Vrai
    February 18th, 2019

    Hello to everyone

    can any one send me valid ccnp route, switch and tshot dump
    at glotoeric at gmail.com

  38. Heisenberg
    March 6th, 2019

    I have passed CCNP ROUTE 300-101 on March 1st 2019 and going to take SW & TS soon.
    Dump IP helper which I bought is 95% valid.
    Anyone who needs can reach me at: hieutrung216 at gmail dot com

  39. Omar
    March 6th, 2019

    Hi @Heisenberg,
    Please check email I just sent you.
    Thank you sir
    Omar

  40. Heisenberg
    March 8th, 2019

    hi @omar,
    I haven’t seen your email.
    Plz check again: hieutrung216(at)gmail(dot)com

  41. Antares
    March 8th, 2019

    If you are looking for latest dumps just email me antaresccnp @ outlook . com.

    I have also latest CCNA, Switch and T-SHOOT.

  42. Timoy
    March 8th, 2019

    Hi Heisenberg – sent you an email just now. Thanks.

  43. Kokane
    March 9th, 2019

    I sat for my CCNP 300-101 ROUTE EXAM yesterday. I did not make it . There were three sim questions: one on OSPF askign several questions from show commands (sh run disabled), one on restribution between ospf and eigrp and the third this simulation above. There were also lots of questions on EVN, VRF Lite and PPPoE. I intend to resit next week. please could some one help with a dump. email to kchambwa at gmail dot come

  44. monbesugo
    March 16th, 2019

    Any BGP sim for this exam??? I have trained only the following sims but they seem to be easy for the supposed level of this certificate…

    EIGRP Stub Simulator
    EIGRP OSPF Redistribute Simulator
    Policy Based Routing Simulator
    IPv6 OSPF Virtual Link Simulator
    OSPF Simulator
    OSPF Evaluation Simulator
    EIGRP Evaluation Simulator

    Am I missing something?

  45. test results
    March 19th, 2019

    What are you supposed to see when you do the testing part to make sure it works?

  46. abdu
    March 31st, 2019

    Omar, what is your email ?

  47. Philips
    April 1st, 2019

    Pass today, 925
    Chinese dump valid
    Labs PBR, EIGRP OSPF redistribute, IPv6
    Thanks digitaltut and all!
    email: philipsmeloo@ gmail .com

  48. sks
    April 4th, 2019

    Hello Philips,
    Can you provide me this dumps?
    salauddin . ete @ gmail.com

  49. Anonymous
    April 6th, 2019

    thanks dear

  50. DummyDummy
    April 8th, 2019

    Appreciate if someone could share the latest 300-101 dumps VCE and PDF to dummydummynamename123123 @ gmail . com

Comment pages
  1. No trackbacks yet.