I have a MX480 with MX-DPC doing CGNAT. I'm Planning to use next-hop style service set.
Sub facing Interface: GE1/0/0
Core facing interface: GE 2/0/0
inside-service-interface :sp-4/0/0.10
inside-service-interface: sp-4/0/0.20;
I'll also create a VRF called CGNAT with the inside interface and sub facing interface:
user@router> show configuration routing-instances
vrf-private {
instance-type vrf;
interface sp-4/0/0.10;
interface ge-1/0/0
routing-options {
static {
route 0.0.0.0/0 {
next-hop [ sp-4/0/0.10 ];
preference 0;
}
}
}
}
I have no issue with the outbound traffic from sub to internet.
But i need to performer some police based routing(PBR) after return traffic passed MS-DPC( translated to private destination address.)
let's say, i want return traffic be redirected to next-hop X instead of following routing table decision.
Is there a way to do this?Thanks.