I have a 3550 L3 switch and I am trying to implement policy based routing. My setup is as follows:
PC1 | | | Switch 3550------- Appliance 1 | \\ | \\ | \\ Firewall1 Firewall 2 | | | | VPN 1 VPN 2 | | | | |__Firewall 3__| | | | PC3
Currently, the switch sends all traffic bound for PC2 through Firewall1
I want traffic from Appliance 1 going to PC2 to pass through Firewall2 instead.
To do this, I went into the Switch config and added the following:
access-list 123 permit ip y.y.y.y 0.0.0.255 x.x.x.x 0.0.0.255 route-map test_map permit 10 match ip address 123 set ip next-hop 192.168.0.1 (IP of inside interface of Firewall 2) int vlan1 ip policy route-map test_map
As far as I can tell, It's set up according to examples in Cisco documentation, but doesn't work. Can anyone see something I missed?