Launching soon: The world's first vendor agnostic bug scrubLearn more & join waitlist
OPERATIONAL DEFECT DATABASE
...
...
The PBR with "set ipv6 default next-hop" stopped working when we cleared the ipv6 neighbor and started to use the default route. route-map Test permit 10 match ipv6 address pbr_test set ipv6 default next-hop xxxx:xxx:xx:1::1 interface TenGigabitEthernet2/0/2 no switchport no ip address ipv6 address xxxx:xxx:xx:1::1/64 ipv6 nd prefix xxxx:xxx:xx:1::/64 7200 3600 no-autoconfig ipv6 nd managed-config-flag ipv6 nd other-config-flag ipv6 nd router-preference High ipv6 policy route-map Test end interface TenGigabitEthernet2/0/3 no switchport no ip address ipv6 address xxxx:xxx:xx:xxxx::2/64 ipv6 nd ra suppress all no ipv6 redirects no ipv6 unreachables Now before clear ipv6 neighbor for Te2/0/3 which is pointing to R3 the PBR works and the ping from R1 to R3 as well. R1#ping xxxx:xxx:x:xx::x so xxxx:xxx:xxx:x::2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to xxxx:xxx:x:xx::x , timeout is 2 seconds: Packet sent with a source address of xxxx:xxx:x:xx::x !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/2 ms But once we cleared the ipv6 neighbor for te2/0/3 the ping failed because the SW choose the default route instead of the PBR which is not an expected behavior: C9500#clear ipv6 nei Te2/0/3 R1#ping xxxx:xxx:xx:1::1 so xxxx:xxx:xx:1::2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to xxxx:xxx:xx:1::1, timeout is 2 seconds: Packet sent with a source address of xxxx:xxx:xx:1::2 ..... Success rate is 0 percent (0/5) C9500#sh ipv6 route IPv6 Routing Table - default - 8 entries S ::/0 [1/0] via xxxx:xxx:xx:1::2 It seems that the Switch is stuck on the default route, after removing the default route the ping starts to work using the PBR. C9500#sh run | sec ipv6 route ipv6 route ::/0 xxxx:xxx:xx:1::2 c9500#conf t Enter configuration commands, one per line. End with CNTL/Z. LOVEHEARTS(config)#no ipv6 route ::/0 xxxx:xxx:xx:1::2 LOVEHEARTS#sh run | sec ipv6 route ipv6 route ::/0 xxxx:xxx:xx:1::2 LOVEHEARTS#conf t Enter configuration commands, one per line. End with CNTL/Z. LOVEHEARTS(config)#no ipv6 route ::/0 xxxx:xxx:xx:1::2 R1#ping xxxx:xxx:xx:1::1 so xxxx:xxx:xx:1::2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to xxxx:xxx:xx:1::1, timeout is 2 seconds: Packet sent with a source address of xxxx:xxx:xx:1::2 !!!!! Success rate is 0 percent (5/5)
HW:C9500-48Y4C-A SW: 17.3.3 Configuring PBR with "set ipv6 default next-hop" and default route on
ping next-hop or configure a static entry for the neighbor