Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1542
Views
5
Helpful
5
Replies

traffice seperate local and internet.

Shiraz Ali
Level 1
Level 1

‎11-30-2022 09:30 PM

Hi All,

Please find the attached, we are using OSPF on Core and distribution switches, all desktop/laptop  users are connected with access switches.

My proxy server is also mentioned separate.

Question : local traffic is going from end user to distribution switch and then core switch. but i want to use only internet traffic can go on proxy server. no need to go local traffic on proxy server. is it possible. 

Cisco Nexus switch 9k

ShirazAli_0-1669872057001.png

 

Labels:
5 Replies 5

MHM Cisco World
VIP
VIP

‎12-01-2022 03:29 AM

with PBR I think you can do that 
any traffic that toward your WAN will go to Core directly 
any traffic that toward internet will go to proxy server 

apply PBR to your Agg-Acc SW link 

0 Helpful

rais
Level 7
Level 7

‎12-01-2022 06:06 AM

If all your internal routes are in OSPF they should go to distro automatically while a default route could point towards Proxy.

How is the proxy attracting local traffic? is proxy part of OSPF?

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎12-01-2022 11:14 AM

there is couple ways i think can be done as I think on this. (but we need to know what kind of proxy servers? )

2 Options, 

1 . Manually end-user proxy settings configured in explicit mode.

2. WCCP  on the switch to redirect traffic to Proxy (if the proxy supports)

on the diagram, you have not shown your Local webservers.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Shiraz Ali
Level 1
Level 1

‎12-01-2022 09:26 PM

Hi, Thanks for feedback.

Please see the layout design.end users are connected below Aggregation switch which is ospf area 10.
1) local traffic will forward from aggregation to core switch.

2) if any user want to go on the internet so the traffic will go from aggregation to the proxy server.

 

ShirazAli_0-1669958610552.png

 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to Shiraz Ali

‎12-03-2022 06:58 AM

I have suggested some methods in the post. (not heard any inputs from you - other than new picture)

also, where is the traffic originating from? users ? where is this device located? (which one is agg switch ?)

how is your traffic path now, when the user initiates HTTP://blabla.com

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card