Mike Kinley This is not challenging enough :-) See, since you are handling a hospital traffic AND since you want to ROUTE ALL HTTP from clients, the best thing for you to do is to install a WEB-REDIRECTOR . The best in the market today is from www.alteonwebsystems.com Here is a return chalenge to you. the access list solution has some problems associated with it. What are they ? Note: I am not criticizing Bills solution. That also is an option. If you can send a network diagram, I will recreate it in m lab and show you the affect of using an access list and a Web Director. Kumar -----Original Message----- From: Bill O'Brien [EMAIL PROTECTED] Sent: Fri, 20 Oct 2000 07:30:39 -0700 (PDT) To: [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: here's a challange.... Mark, What you need is IP Policy routing create an access-list extended in your case that matches the traffic you want to direct to the proxy. ie to-proxy create a access-list for all other traffic. i.e to-other create a route map as follows: route-map to-proxy permit 10 match ip address to-proxy set next-hop (ip address of proxy) route-map to-proxy permit 20 match ip address to-other on interfaces requiring fitering place ip policy route-map to-proxy Got questions let me know Bill --- Mark Kinley <[EMAIL PROTECTED]> wrote: > Here's one for all you Cisco Mentors out there. > > I have recently installed a Catalyst switch 6500 > here in the hospital. > I have a direct T1 from my local ISP to this site. > > My Challange is to: > > Route all HTTP traffic from my client p.c's via > default gateway 172.16.1.3 (port 80) to my PIX > Firewall(linux server/ Red Hat)172.16.1.163 (port > 8002) > > in other words, every p.c. that has internet access > will go directly to default gateway then to the > firewall and gain access to the local isp. > > I am playing around with access-list / extended > access-list > > welcome any solutions / resolutions to this problem. > > __________________________________________________ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/ _________________________________ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___________________________________________________________________________ Visit http://www.visto.com/info, your free web-based communications center. Visto.com. Life on the Dot. _________________________________ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]