现在要做到的效果是:其它无线路由器、WX3024、WX3024H走F100出去,只能在核心上做策略路由,交换机不支持PBR,只能引用QOS,定义ACL,下一跳是F100的60.250,在端口上inbound,策略生效后,其它无线路由器和WX3024可以正常从F100出去,WX3024H会有问题,求解
三层核心7506E配置
定义ACL
acl number 3333
description all wifi
rule 1 permit ip source 192.168.1.0 0.0.0.255
rule 9 permit ip source 192.168.18.0 0.0.0.255
rule 11 permit ip source 192.168.40.240 0
rule 12 permit ip source 192.168.40.241 0
rule 13 permit ip source 192.168.40.245 0
rule 14 permit ip source 192.168.40.154 0
rule 15 permit ip source 192.168.30.240 0
rule 16 permit ip source 192.168.50.204 0
rule 18 permit ip source 192.168.50.201 0
rule 19 permit ip source 192.168.30.236 0
rule 20 permit ip source 192.168.30.2 0
rule 21 permit ip source 192.168.20.232 0
rule 22 permit ip source 192.168.30.10 0
rule 23 permit ip source 192.168.30.79 0
rule 24 permit ip source 192.168.30.140 0
rule 25 permit ip source 192.168.20.238 0
rule 30 permit ip source 192.168.20.233 0
traffic classifier wireless operator and
if-match acl 3333
traffic behavior tiaozuan
redirect next-hop 192.168.60.250
qos policy wireless
classifier wireless behavior tiaozuan
interface GigabitEthernet2/0/21
description DYWIFI
port access vlan 18
qos apply policy wireless inbound
(0)
最佳答案
其他的正常,针对有问题的ip,可以下个accounting看下该ip是否匹配到了
(0)
accounting是什么软件,现在策略路由是OK的,切换过去,从60.250可以SSH到18.1,18.1TRACERT是从60.250出去,但切换后,18段直接跳到60.250,不经过18.1,将AC和AP的联通切断了,该如何处理?
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明
accounting是什么软件,现在策略路由是OK的,切换过去,从60.250可以SSH到18.1,18.1TRACERT是从60.250出去,但切换后,18段直接跳到60.250,不经过18.1,将AC和AP的联通切断了,该如何处理?