acl number 3009       去内网不重定向
rule permit ip destination 10.0.0.0 0.255.255.255
rule permit ip destination 172.16.0.0 0.7.255.255
rule permit ip destination 192.168.0.0 0.0.255.255

acl number 3010
rule permit ip           去外网匹配所有

traffic classifier ACL_3009
 if-match acl 3009
traffic classifier ACL_3010
 if-match acl 3010

traffic behavior ACL_3009
(空)

traffic behavior ACL_3010
 redirect ip-nexthop 172.18.122.2

traffic policy PBR
 classifier ACL_3009 behavior ACL_3009
 classifier ACL_3010 behavior ACL_3010

int g0/0/0
 ip add 192.168.1.1 24
 traffic-policy PBR inbound


#
acl number 3000           #去内网的acl
rule 5 permit ip source 10.1.1.0 0.0.0.255 destination 10.1.2.0 0.0.0.255
acl number 3001
rule 5 permit ip source 10.1.1.0 0.0.0.255
acl number 3002
rule 5 permit ip source 10.1.2.0 0.0.0.255

#  acl3000不重定向 3001重定向至dx   3002定向至lt
traffic classifier no-redircet 
if-match acl 3000
traffic classifier redirect-dx 
if-match acl 3001
traffic classifier redirect-lt 
if-match acl 3002

#不重定向网段里面不配下一跳地址
traffic behavior no-redirect
(空)
traffic behavior redirect-dx
redirect ip-nexthop 1.1.1.1
traffic behavior redirect-lt
redirect ip-nexthop 2.2.2.2
#  内网ip段放在第一项，不进行重定向
traffic policy celvluyou
classifier no-redircet behavior no-redirect
classifier redirect-dx behavior redirect-dx
classifier redirect-lt behavior redirect-lt
# 调用
interface GigabitEthernet0/0/1
traffic-policy celvluyou inbound
#