cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2838
Views
0
Helpful
8
Replies

Policy Map redirect port 80 Switch 3750X

lcarbajalparedes
Beginner
Beginner

Hello,

I would like to know if it possible to create a policy map in order to redirect the traffic ( 80 , http, 8080) to a proxy .

My current equipment its a 3750X using a IP Service License

I was reviewing some options but i want to be sure before implement in production.

Thank for the advice.

Regards,

8 Replies 8

smehrnia
Rising star
Rising star

Hi there,

I believe this link could help you, I dont know if you have considered WCCP (web-cache) or not ;-)

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_55_se/configuration/guide/swwccp.html

cheerZ

Hope it Helps!

Soroush.

Luis,

Are you sure that a route map would not do the same,

may be something like this:-

!
!
access-list 123 remark * MATCH WWW TRAFFIC *
access-list 123 permit tcp any any eq 80
access-list 123 permit tcp any any eq 8080
access-list 123 permit tcp any any eq 443
!
!
route-map REDIRECT_WWW_TRAFFIC permit 10
match ip address 123
set ip next-hop 123.123.123.123
!
!
int vlan 123
ip policy route-map REDIRECT_WWW_TRAFFIC
!
!

The L3-Switch would need connectivity to ip address 123.123.123.123
for this to work

Regards,
Alex.
Please rate useful posts.

Regards, Alex. Please rate useful posts.

Alex,

I think what Luis wants is more of a Applcation Service (web proxy and cache) or sth like this, a route map simply diverts traffic to a defined next hop and thats it.

correct me if im wrong :-)

Rate me too!

Hope it Helps!

Soroush.

Hello,

thank you for your advice, i would like to test this configuration:

access-list 110 remark Internet Traffic

access-list 110 permit tcp any any eq 80

access-list 110 permit tcp any any eq 8080

access-list 110 permit tcp any any eq 443

!

!

route-map Redirect_Internet Traffic permit 10

match ip address 110

set ip next-hop X.X.X.X (IP Proxy)

route-map Redirect_Internet Traffic permit 20

!

!

int vlan 3

ip policy route-map Redirect_Internet

!

int vlan 4

ip policy route-map Redirect_Internet

Tha vlan 3 and vlan 4 are my vlan for users, i would like to know if other traffic ( not listed in the rules) will flow correctly to outside and inside.

Regards,

Hi Luis,

it will work ok and by the way for PBR you don't need this (as traffic not matching the permit 10 will follow normal routing anyway).:

route-map Redirect_Internet Traffic permit 20

Regards.

Alain.

Don't forget to rate helpful posts.

Don't forget to rate helpful posts.