dsl modem connected to eth0. cannot ping anything beyond the dg for the eth0 subnet. i have verified that a computer directly connected to the back of the dsl modem does have internet access.
i assume i need to force traffic sourced from the dsl block out the dsl link, so, I created and applied this pbr route-map,
interface Ethernet0 ip address 71.x.x.178 255.255.255.0 ip policy route-map dslblock .....
! interface Virtual-Template1 ip address negotiated ip policy route-map dslblock ..... ! ! access-list 100 permit ip 71.x.x.0 0.0.0.255 any .... route-map dslblock permit 10 match ip address 100 set ip next-hop 71.x.x.1
but based on debug, i see packets sourced from eth0 going out the virtual-template int ( a covad t1 link ) that is the dg. and pinging eth0 from the outside yields no response.
*Mar 2 22:34:13.080: IP: s=71.x.x.178 (local), d=216.x.x.x (Virtual-Access1), len 40, sendingGateway of last resort is 172.x.x.253 to network 0.0.0.0
71.0.0.0/8 is variably subnetted, 2 subnets, 2 masks S 71.x.x.179/32 [1/0] via 72.245.200.130 C 71.x.x.0/24 is directly connected, Ethernet0 172.x.x.0/32 is subnetted, 1 subnets C 172.x.x.29 is directly connected, Virtual-Access1 172.x.x.0/32 is subnetted, 1 subnets C 172.x.x.253 is directly connected, Virtual-Access1 72.0.0.0/28 is subnetted, 1 subnets C 72.x.x.128 is directly connected, FastEthernet0 S* 0.0.0.0/0 [1/0] via 172.x.x.253