design of my network https://imgur.com/a/l9OpNQC
Hi guys, I need some help.
This is my Network.
I have the following problem, in my BRAS, which is blue, there is a client with windows with ports for the TS, he asked me to release this port for him, he would pay, I didn't provide Public IP, so I released the port la on my CGNAT, everything working normal.
This same client opened a branch in another red BRAS, and now he can't access this external redirect, he can't find it.
Today on my BGP, I did PBR, pointing out that clients who have ip Publico leave directly without going through CGNAT and whoever has the range 100.64.0.0/10 goes to CGNAT.
These are my rules there:
scr: blank to dst:my public ip range lookup table main
src:100.64.0.0/10 to dst: 100.64.0.0/10 lookup table main
src:100.64.0.0/10 to dst: blank lookup table CGNAT
src:100.64.0.0/10 to dst my public ip range lookup table main

Do you think that something is missing from these PBRs?
I even made a harpnat rule in cgnat, this one as the first one that is from the 100.64.0.0/10 network to the 100.64.0.0/10 masquarade network.