Home
Certification Preparation
Cisco
CCNP
CCNP Security
ASA Redirection
marcusaureliusbrutus
Hi. We are using an ASA 5500. We have a DMZ where our proxy server is located. I have a route map on our internal router that could only redirect to www traffic to its next hop ip which is the internal interface of the ASA. I have been reading that there is no policy map (route-map) capability of the ASA. Is there a way for me to redirect www traffic going through the internal interface of the ASA to be forwarded to the squid proxy in the DMZ? Also, is there a way to redirect non-www traffic as well?
Thanks.
Find more posts tagged with
Comments
rossonieri#1
hi,
i think you can do that using some short of PBR,
but i like to know your config on the internal router prior asking this question?
Ahriakin
You could use Dynamic PAT. I would avoid using the IP of the ASA itself, use a separate one if you can but it should still work....but ALL traffic for the ports/protocols you define will fall under this rule. Anyway you specify TCP 80 as the condition for the translation from your ASA Inside interface IP to the DMZ host.
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
