On Wed, 23 Aug 2000, Khodaverdian, Hamlet wrote: > Hello all, > > Has anyone used access-lists to redirect http traffic to a Cache Engine? Is > this even possible? > > I am aware that WCCP is capable of doing http redirection and have used it > before, but I was wondering if > there are other ways to do http redirection. > > thanks in advance, yes, you can do this using policy routing, but I don't recommend it. If you are going to do it, then at least use IOS 11.3, in which policy routing was fast switched. In the below: 208.206.76.0/24 LAN ethernet 208.206.76.44 Address of the cache server ! interface Ethernet0 description To Office Ethernet ip address 208.206.76.1 255.255.255.0 no ip directed-broadcast no ip mroute-cache ip policy route-map proxy-redir ! access-list 110 deny tcp host 208.206.76.44 any eq www access-list 110 permit tcp any any eq www route-map proxy-redir permit 10 match ip address 110 set ip next-hop 208.206.76.44 This will allow the cache server itself to get out via port 80, but anything else gets sent to the cache server. Realize that the layer 3 header is not re-written. When the cache server receives the packet, it must be configured to accept packets to any destination. Each OS has a way of accomplishing this, for example with linux you would use ipchains or ipfwadm. Policy routing has no provision for health checks nor failover.........which is why I would use WCCP or a layer 4 switch > > Hamlet > > > ___________________________________ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ----------------------------------------------- Brian Feeny, CCNA, CCDA [EMAIL PROTECTED] Network Administrator ShreveNet Inc. (ASN 11881) ___________________________________ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
