Hi Everyone,
Trying to think of how to achive this, check below picture and let me know of your ideas:
- Hosts on Z1 can't tak to each other directly although in the same VLAN and have to go to the default gateway on R1 and come back (Similar to PVLAN concept)
- There is a Traffic capture machine sitting behind R2/R3 where the traffic pointed to R1 from any Z1 host has to traverese before any action.
(==> if 1.1.1.1 tries to talk to 1.1.1.2 , R1 has to send the traffic to traffic capture machine and when returns then point it back to 1.1.1.2)
I'm thinkin about below:
1) Have a default route toward R2/R3 in addition to BGP advertisement of 1.1.1.0/24
2) Matching any traffic with route-map on the R1 interface toward "Z1" then set the next-hop to R2/R3 , R2/R3 should have some mechanis in place as well to push the traffic toward the capturing machien rather then passit back to R1 and create a loop.
3) When the traffic comes back , it'll automatically be pointed to the connected interface of the router and no need to change.
Thanks for help guys
Samy
