Need help with redirection policy routing

[tamray]

I need to create a policy on a Cisco 2621 that will redirect all web request coming from specific subnets to a content filter box.

Example:

Local LAN > nated to public IP (local router) > default route is 2621 with policy > HTTP, and HTTPS redirected to content filter box (on different subnet) > Content filter connects to Internet, and returns request to Local LAN.

What is the best way to accomplish this?

 

[unclerico]

This should work:

ip access-list extended PBRME_ASAP
permit tcp <specific_subnet> <mask> any eq www
permit tcp <specific_subnet> <mask> any eq https

route-map WEB_FILTER permit 10
match ip address PBRME_ASAP
set ip next-hop <web_filter_ip>

Router(config-if)# ip policy route-map WEB_FILTER

If you have other internal subnets that host web services, you may want to deny those at the top of the ACL so that the web traffic sent from your special case subnet to the internal resources doesn't get routed to the filter. I hope this makes sense.

You could also solve this by using the proxy settings in internet explorer.

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[tamray]

Thank you.. I will give this a try next week.