Mike Kinley
This is not challenging enough :-)
See, since you are handling a hospital traffic AND since you want to ROUTE ALL HTTP
from clients, the best thing for you to do is to install a WEB-REDIRECTOR . The best
in the market today is from www.alteonwebsystems.com
Here is a return chalenge to you. the access list solution has some problems
associated with it. What are they ?
Note: I am not criticizing Bills solution. That also is an option.
If you can send a network diagram, I will recreate it in m lab and show you the affect
of using an access list and a Web Director.
Kumar
-----Original Message-----
From: Bill O'Brien [EMAIL PROTECTED]
Sent: Fri, 20 Oct 2000 07:30:39 -0700 (PDT)
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
Subject: Re: here's a challange....
Mark,
What you need is IP Policy routing
create an access-list extended in your case that
matches the traffic you want to direct to the proxy.
ie to-proxy
create a access-list for all other traffic.
i.e to-other
create a route map as follows:
route-map to-proxy permit 10
match ip address to-proxy
set next-hop (ip address of proxy)
route-map to-proxy permit 20
match ip address to-other
on interfaces requiring fitering
place ip policy route-map to-proxy
Got questions let me know
Bill
--- Mark Kinley <[EMAIL PROTECTED]> wrote:
> Here's one for all you Cisco Mentors out there.
>
> I have recently installed a Catalyst switch 6500
> here in the hospital.
> I have a direct T1 from my local ISP to this site.
>
> My Challange is to:
>
> Route all HTTP traffic from my client p.c's via
> default gateway 172.16.1.3 (port 80) to my PIX
> Firewall(linux server/ Red Hat)172.16.1.163 (port
> 8002)
>
> in other words, every p.c. that has internet access
> will go directly to default gateway then to the
> firewall and gain access to the local isp.
>
> I am playing around with access-list / extended
> access-list
>
> welcome any solutions / resolutions to this problem.
>
>
__________________________________________________
Do You Yahoo!?
Yahoo! Messenger - Talk while you surf! It's FREE.
http://im.yahoo.com/
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
___________________________________________________________________________
Visit http://www.visto.com/info, your free web-based communications center.
Visto.com. Life on the Dot.
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]