Yeah, it's not too complicated. I do this in one of my production networks.
You need a route map that matches packets somehow - i use source address. Then you just set the next hop to whatever you want for your server. If your server isn't directly connected, you need to either rewrite the dest address or source-route it from there to the final server, or some combination of both. At the server, you usually need to do some advanced configuration if you don't rewrite the dest address, in order to get it to accept connections that aren't destined for it. For more info, do a google search on setting up squid to be a transparent proxy. It's basically the same thing. Let me know if you want more details. -sd Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58899&t=58887 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
