Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2607
Views
5
Helpful
6
Replies

Access all traffic through Proxy Server, except SMPT and POP

farrukh19911
Level 1
Level 1

‎02-10-2016 09:42 PM - edited ‎03-08-2019 04:33 AM

There are two servers . The proxy and mail server . Client go to the Internet through a proxy server. When a client sends a request to the mail server, the requests go through 91.90.20.202 to the external address of the mail server. It is necessary that clients sent only SMTP and POP requests through the local mail server and the rest of the traffic has to go through a proxy server. How to do it? I cant change the scheme

Сisco 3750g uniquely uses routing.
Labels:
Preview file
56 KB
0 Helpful
6 Replies 6

Jon Marshall
Hall of Fame
Hall of Fame

‎02-11-2016 06:09 AM

If your 3560 has the IP Services license you could use either PBR or WCCP to direct traffic to the proxy server.

Jon

0 Helpful

farrukh19911
Level 1
Level 1
In response to Jon Marshall

‎02-11-2016 08:52 PM

Thanks a lot.

But I have also a 3750G on real scheme, but not 3560. And on the 3750G is also supported route map with IOS c3750-ipservicesk9-mz.122-52.SE.bin.

What command do i add, that only smtp and pop went through Local interface mail server, the other traffic designed to internet went through Proxy Server.

Please carefully look once again at scheme. Because the client GW is Proxy Server. Because of it all POP and SMTP went through proxy wan interface to mail server, not through LAN.

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to farrukh19911

‎02-12-2016 02:06 AM

I missed that bit about the client gateway.

If that is the case you can't do anything because both PBR and WCCP work on a L3 interface.

I know you said you can't change the scheme but you are going to have to if you want this to work because you need the L3 gateway of the clients to be on the 3750 switch.

Jon

0 Helpful

farrukh19911
Level 1
Level 1
In response to Jon Marshall

‎02-14-2016 07:41 PM

I changed the scheme. Now pc1 go out to the internet through proxy without any problem.

How can i do, that only smtp and pop request must go through mail server local address from PC1, all other traffic must go through proxy. it is possible to realise with route map?

Because now if i put 192.168.1.2 as proxy on PC1, this PC sends requests to Mail server through Proxy external address and it loads an external channel.

Preview file
60 KB
0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to farrukh19911

‎02-15-2016 02:12 AM

You cannot do this if the default gateway is the proxy server because all traffic will be sent to it.

You can only do it if the default gateway of the PC is on the 3750 and the PC is in a different IP subnet than the mail or proxy server.

Jon

0 Helpful

Ganesh Hariharan
VIP Alumni
VIP Alumni

‎02-11-2016 08:55 AM

Hello,

With your setup only option is either PBR or WCCP. To deploy WCCP re-direction in 3560 switches with IP Services or Advanced IP Services feature sets, on IOS 12.2(25) and later.

Have a look on WCCP in 3560

Hope it Helps..

-GI

Customers Also Viewed These Support Documents