Hello,
I am staging a cutover and would like some suggestions. I have a core switch (Dell), that has several VLANs. These VLANs are very large and we are working to trim them down. We are also implementing a firewall. The firewall is working as expected so no issues with that. However, the new VLANs need to go out the new default gateway, while still maintaining connectivity to the rest of the VLANs on the Dell core.
When I use a route-map with an acl that says
permit ip 10.10.10.0 0.0.0.255 any
For the route-map, traffic goes out of the new next-hop, but I lose connectivity to the rest of the VLANs. I've tried this for the ACL for the route-map as well, thinking if it's deny, it just won't hit the route-map.
ip access-list testacl
1000 deny ip any 172.16.0.0 0.15.255.255
1010 deny ip any 192.168.1.0 0.0.0.255
1020 deny ip any 10.0.0.0 0.255.255.255
1030 permit every
I know there has got to be a way to do this and I am being boneheaded.
Thanks
No comments:
Post a Comment