HTTP redirect using a Cisco 3750 switch

iirvine · ‎09-17-2012

Hi,

I have tried search but cound found anything for the 3750 switch about how to redirect HTTP, HTTPS & SMTP traffic to altenative gateway, than our standard gateway on our network, so here goes:

The network that need the HTTP, HTTPS and SMTP traffic redirect is 192.168.5.0/24 and should be redirect to 192.168.5.205 where as all other traffic need to be direct to 192.168.5.199.

Can the 3750 switch do this typo of refirect and if how?? Im pulling my hair out here as I can find anything on the Cisco site stating how or even if it is possible! Any help on this would be appreciated.

Jon Marshall · ‎09-17-2012

Iain

I haven't tried using PBR sending the packets back out of the same vlan interface but you could try this -

Note that there are a couple of provisos

1) the switch must have IP Services image - IP Base does not support PBR

2) the switch must be running the routing template "sh sdm prefer" will show what template you are using. If you need to enable the routing template then the switch requires a reboot.

3) obviously the switch must be running ip routing

if the above are met then try this PBR config -

access-list 101 permit tcp 192.168.5.0 0.0.0.255 eq 25 any

access-list 101 permit tcp 192.168.5.0 0.0.0.255 eq 80 any

access-list 101 permit tcp 192.168.5.0 0.0.0.255 eq 443 any

route-map PBR permit 10

match ip address 101

set ip next-hop 192.168.5.205

int vlan xxx

ip address 192.168.5.x 255.255.255.0

ip policy route-map PBR

the above assumes you have a default route pointing to 192.169.5.199 so you only have to PBR the 192.168.5.205 destined traffic.

Jon

skarthic · ‎09-17-2012

There is also a good document available here explaining how to configure and setup PBR with 3560/3750 switches

https://supportforums.cisco.com/community/netpro/network-infrastructure/routing/blog/2011/03/31/pbr-on-switches-37503560