今天在通信实验室和局方的机房里，遇到了华为的93系统交换机需要跨越路由的问题，经过一番思索之后还是把问题解决了。过程记录如下，供大家审阅：

ip route-static vpn-instance v263 114.112.37.160 255.255.255.224 vpn-instance vNAT221 172.27.40.2 description v263->v221->zjyd

跨VPN instance的路由

1、定义ACL

acl name zhejiangyidong 3997

rule 5 permit ip source 103.17.41.0 0.0.0.15

2、定义class

traffic classifier zhejiangyidong operator or precedence 54

if-match acl zhejiangyidong

3、定义behaver

traffic behavior zhejiangyidong

permit

redirect vpn v263 ip-nexthop 114.112.76.205

statistic enable

4、定义策略

traffic policy zhejiangyidong

classifier zhejiangyidong behavior zhejiangyidong

5、在vlan下应用

因为策略是基于流的，只能在物理接口下应用或者在vlan下应用

vlan 1538

description For CM Zhejiang 01

traffic-policy zhejiangyidong inbound