Local policy-based-route failed due to icmp-reply fast

Publication Date:  2014-04-26 Views:  644 Downloads:  0
Issue Description

The topology is shown above, all traffic from AR2 to AR1 is forwarded through GE0/0/0 by default.
Local PBR is configured change outgoing interface to GE0/0/1 when traffic is incoming from GE0/0/1.
After the configuration, the route didn't change, reply traffic still via GE0/0/0 when ping from client1.
It indicates local PBR failed.
Alarm Information
None
Handling Process
1. check counters on interface GE0/0/1 when client1 ping ip address on GE0/0/1, reply packets are not forwarded via GE0/0/1
<AR2>dis int g0/0/1
GigabitEthernet0/0/1 current state : UP
Line protocol current state : UP
Input:  5 packets, 370 bytes
  Unicast:                  5,  Multicast:                   0
  Broadcast:                0,  Jumbo:                       0
  Discard:                  0,  Total Error:                 0

  CRC:                      0,  Giants:                      0
  Jabbers:                  0,  Throttles:                   0
  Runts:                    0,  Symbols:                     0
  Ignoreds:                 0,  Frames:                      0

Output:  0 packets, 0 bytes
  Unicast:                  0,  Multicast:                   0
  Broadcast:                0,  Jumbo:                       0
  Discard:                  0,  Total Error:                 0

2. Check configuration, policy-based-route is correct as below:
#
interface GigabitEthernet0/0/1
ip address 10.1.2.2 255.255.255.0
#
policy-based-route test permit node 10
if-match acl 3001
apply ip-address next-hop 10.1.2.1 
#
acl number 3001 
rule 5 permit ip source 10.1.2.2 0 destination 192.168.1.0 0.0.0.255
#
ip local policy-based-route test
#

3. Undo icmp-reply fast
#
undo icmp-reply fast
#

4. check counter on GE0/0/1 again, the outgoing traffic is forwarded via GE0/0/1

[AR2]dis int g0/0/1
GigabitEthernet0/0/1 current state : UP
Line protocol current state : UP
Last line protocol up time : 2014-04-26 11:20:29 UTC-05:13
Description:HUAWEI, AR Series, GigabitEthernet0/0/1 Interface
Route Port,The Maximum Transmit Unit is 1500
Internet Address is 10.1.2.2/24

Input:  5 packets, 370 bytes
  Unicast:                  5,  Multicast:                   0
  Broadcast:                0,  Jumbo:                       0
  Discard:                  0,  Total Error:                 0

  CRC:                      0,  Giants:                      0
  Jabbers:                  0,  Throttles:                   0
  Runts:                    0,  Symbols:                     0
  Ignoreds:                 0,  Frames:                      0

Output:  5 packets, 370 bytes
  Unicast:                  5,  Multicast:                   0
  Broadcast:                0,  Jumbo:                       0
  Discard:                  0,  Total Error:                 0

Root Cause
1. PBR configuration is incorrect
2. icmp-reply fast enable cause ping packets doesn't check policy-based-route
Suggestions
suggest to undo icmp-reply fast when apply local policy-based-route

END