【K3 OER】不出现象，怎么破，上火呀

mystery

R4配置如下
pfr master
policy-rules oer_map
no max-range-utilization
!
border 6.6.2.2 key-chain cisco
  interface Ethernet0/0 external
  interface Tunnel100 internal
  interface Serial1/0 internal
!
border 6.6.1.1 key-chain cisco
  interface Ethernet0/0 external
  interface Tunnel100 internal
  interface Serial1/0 internal
application define cs2 access-list cs2
application define cs4 access-list cs4
!
ip access-list extended cs2
permit ip 6.6.44.0 0.0.0.255 any dscp cs2
ip access-list extended cs4
permit ip 6.6.44.0 0.0.0.255 any dscp cs4
!
ip prefix-list 55 seq 5 permit 6.6.55.0/24
!
pfr-map oer_map 10
match traffic-class application cs2 prefix-list 55
set mode select-exit good
set mode route control
set mode monitor active
set next-hop 6.6.17.7
!
pfr-map oer_map 20
match traffic-class application cs4 prefix-list 55
set mode select-exit good
set mode route control
set mode monitor active
set next-hop 6.6.42.10
!
R4#sho pfr master t
*Nov 29 13:28:06.367: %PFR_MC-5-ROUTE_EVENT: oer_map 10 - 50 Traffic Class OUT OF POLICY
*Nov 29 13:28:06.367: %PFR_MC-5-ROUTE_EVENT: oer_map 20 - 50 Traffic Class OUT OF POLICY
R4#sho pfr master tr
OER Prefix Statistics:
Pas - Passive, Act - Active, S - Short term, L - Long term, Dly - Delay (ms),
P - Percentage below threshold, Jit - Jitter (ms),
MOS - Mean Opinion Score
Los - Packet Loss (packets-per-million), Un - Unreachable (flows-per-million),
E - Egress, I - Ingress, Bw - Bandwidth (kbps), N - Not applicable
U - unknown, * - uncontrolled, + - control more specific, @ - active probe all
# - Prefix monitor mode is Special, & - Blackholed Prefix
% - Force Next-Hop, ^ - Prefix is denied

DstPrefix           Appl_ID Dscp Prot     SrcPort     DstPort SrcPrefix         
           Flags             State     Time            CurrBR  CurrI/F Protocol
         PasSDly  PasLDly   PasSUn   PasLUn  PasSLos  PasLLos      EBw      IBw
         ActSDly  ActLDly   ActSUn   ActLUn  ActSJit  ActPMOS  ActSLos  ActLLos
--------------------------------------------------------------------------------
6.6.55.0/24             cs4    N    N           N           N 0.0.0.0/0         
               %         INPOLICY*        0           6.6.2.2 U               PBR     

6.6.55.0/24             cs2    N    N           N           N 0.0.0.0/0         
               %         INPOLICY*        0           6.6.2.2 U               PBR
出接口为U，不知咋整
在R4上通过扩展ping向VLan55发出CS2和CS4的流，不通
R4#ping
Protocol [ip]:
Target IP address: 6.6.55.8
Repeat count [5]:
Datagram size [100]:
Timeout in seconds [2]:
Extended commands [n]: y
Source address or interface: 6.6.44.4
Type of service [0]: 128
Set DF bit in IP header? [no]:
Validate reply data? [no]:
Data pattern [0xABCD]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Sweep range of sizes [n]:
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 6.6.55.8, timeout is 2 seconds:
Packet sent with a source address of 6.6.44.4
.....
R4#ping
Protocol [ip]:
Target IP address: 6.6.55.8
Repeat count [5]:
Datagram size [100]:
Timeout in seconds [2]:
Extended commands [n]: y
Source address or interface: 6.6.44.4
Type of service [0]: 64
Set DF bit in IP header? [no]:
Validate reply data? [no]:
Data pattern [0xABCD]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Sweep range of sizes [n]:
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 6.6.55.8, timeout is 2 seconds:
Packet sent with a source address of 6.6.44.4
.....
如果是普通流或者别的类型就OK
R4#ping 6.6.55.8 sou 6.6.44.4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 6.6.55.8, timeout is 2 seconds:
Packet sent with a source address of 6.6.44.4
!!!!!