Forwarding to next-hop
When you use the l4_switch Template Mode, you can configure the action type as forward, drop, or redirect. The redirect option provides a forward-to-next-hop action. If you select redirect, you can also choose to either forward or drop traffic if the redirect IP address becomes unreachable.
The example that follows allows all FTP traffic to host 192.4.4.3 by using a next-hop filter of 10.1.1.74 to Passport 8600B instead of the shortest hop of 10.1.1.70 to Passport 8600A. It also uses the shortest next-hop of 10.1.1.70 in case 10.1.1.74 should fail. The Passport 1648T is configured with an ACL filter on dst IP = 192.4.4.3 and TCP port =23 with a redirect (forward to next hop) action to 10.1.1.74. See the graphic that follows to configure forwarding to this next-hop.
- From the Device Manager menu bar, choose IP Routing > Filter.
| The ACL dialog box opens with the Template Mode tab displayed. |
| By default, Template Mode 1 should already be set for l4-switch. |
- Click the Flow Classifier tab.
| The Flow Classifier tab opens. |
- Click L4SwitchTCPDstIP and then select true from the selection menu that appears.
- Click L4SwitchTCPDstPort and then select true from the selection menu that appears.
- Click the Template Rule tab.
| The Template Rule tab opens. |
- Click Insert to access the ACL, Insert Template Rule dialog.
- Click tcp as the L4SwitchSessionType.
- Enter 192.4.4.3 as the L4SwitchSessionTCPDstIp address.
- Enter 21 as the L4SwitchSessionTCPDstPort.
- Ensure that L4SwitchActionRedirectDropUnreachable is set to false.
- Click Close to exit the ACL, Insert Template Rule dialog.
- Click the Bind VLAN tab on the ACL dialog.
- Click Insert to insert a bind VLAN.
| The ACL, Insert Bind VLAN dialog box opens. |
- Select 1 as the TemplateId.
- Click the ellipsis button.
| The VlanName selection box opens. |
- Select 10 as the VLAN name and click OK.
- Click Close to exit the ACL, Insert Bind VLAN dialog.
- Click Close to return to the main Device Manager window.