Hi this is the first time diving into PBR on switching so here goes. I have read the doco and think I have have a handle on what to do.
My goal is to have any http or https traffic using vlan 1 to be directed to a web filtering appliance which will act as a gateway. Below is how I plan to configure the switch. Have I got this right? I want to check before I start messing with traffic on the switch. I also put in a second hop incase the first gateway is not active and will then send the traffic out to the secondary gateway
:Traffic class defined
switch(config)#: class ipv4 http
switch(config-class)#: match tcp any any eq 80
switch(config-class)#: match tcp any any eq 443
switch(config-class)#: exit
:PBR policy created
switch(config)#: policy pbr http_https_gateway
switch(policy-pbr)#: class ipv4 http
switch(policy-pbr-class)#: action ip next-hop 10.38.24.12
switch(policy-pbr-class)#: action ip next-hop 10.38.24.1
switch(policy-pbr-class)#: exit
switch(policy-pbr)#: exit
:PBR Appied to vlan
switch(config)#: vlan 1
Switch(vlan-1)# service-policy http_https_gateway in
#2930F