Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations John Tel on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

what is route-map ommand ? 1

Status
Not open for further replies.
haneo

haneo

Programmer
Jan 2, 2002
274
CA
we have a cisco 2511 IOS 11.0(16) with a linux as getway from internal network connected with it via Ethernet interface 100Mbits/s

can some body tell me what is this config ??

route-map squid permit 10
match ip address 110
set ip next-hop IP-OF-THE-LINUX-GATWAY

thanks for all ;)
 
Sort by date Sort by votes
This is policy based routing. It is a way of making data flow differently that the routing tables would sugguest.

In your example:

route-map squid permit 10 <--- Defines the routemap

match ip address 110 <--- Defines interesting traffic

set ip next-hop IP-OF-THE-LINUX-GATWAY <--- Tells router that all interesting traffic should go to IP-OF-THE-LINUX-GATWAY instead if the default gateway or a route in the routing table.

You should have an access-list 110 that tells you what traffic is going to match.

You can also use route-maps to mark traffic as well. For example, you could set the IP Precedence bit on certain traffic by using route-maps.



 
Upvote 0 Downvote
Thanks mtashiro for your rapid post

Yes there is an ACL like this:
access-list 110 deny tcp host IP-OF-THE-LINUX-GATWAY any eq www
access-list 110 permit tcp any any eq www


so this block proxy from browsing ?

but this can't be done by ? :

access-list 1 deny IP-OF-THE-LINUX-GATWAY any eq www
 
Upvote 0 Downvote
Just a precision:

When i navigate from that proxy with mozilla i can view web pages so this access list is not doing what it should do !

wait you post [bigears] .
 
Upvote 0 Downvote
No, it is not blocking web traffic. In your case it is saying any from any host execpt the LINUX-Gateway hits the router the next hop address is the LINUX-Gateway (proxy server?). If the proxy server traffic hits the router then send it out the router. You don't want from the LINUX-Gateway to send it's back to iself and create a loop.
 
Upvote 0 Downvote
What it does pretty obviously is redirect vanilla http
traffic through your linux squid proxy.
This is definitely one way to create the illusion of a transparent proxy.
 
Upvote 0 Downvote
marsed thanks i was searching for a long time how to do a transparant proxy with cisco routers, but with no result !!

I am happy that existe i will retest this tomorrow and send the result here (it's not me how configured the cisco)

Thanks for all mtashiro & marsd
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

WinstonCH
  • Locked
  • Helpful tip
What is wrong with the diagram, there are people who will help to fix it? How do i do the configurat 1
Replies
1
Views
670
BIS
BIS
jobsp90
  • Question
I have a issue in my office hospital network regarding using IPPBX software.
Replies
2
Views
203
DavetheChef
DavetheChef
CPM86
  • Question
Cisco isr 4331 with IOS and sip busy fail over to 2nd sip number on pbx?
Replies
0
Views
178
CPM86
CPM86
quazimotto
  • Locked
  • Question
Cisco ASA_5505 VPN to Juniper_SRX210 VPN IS UP_ No Traffic!!!!!!
Replies
0
Views
228
quazimotto
quazimotto
hairyprogrammer1
  • Locked
  • Question
What is my Speed...?
Replies
1
Views
216
iggsterman
iggsterman

Part and Inventory Search

Sponsor

Back
Top