Hi,
I want to make a transparent redirection of www traffic to proxy (squid) in dmz to control access to internet.
lan---switch 3750----pix 515e----Internet
(ios 11.2 smi) |
|
proxy-(dmz)
(v6.3 limited)
I've search information on web and found this command :
route-map proxy-redirect permit 10
match ip address 110
set ip next-hop 'proxy's ip address'
access-list 110 deny tcp any any neq www
access-list 110 deny tcp host 'proxy's ip address' any
access-list 110 permit tcp any any
ip policy route-map proxy-redirect
but the pix doesn't understand the ip policy command
and the 3750 neither accept the command.
Is it on the 3750 or on the pix that I program the redirection ?
What command can do it ?
Thank you for your help.