policy based routing on fwsm

Unanswered Question
Mar 8th, 2007
User Badges:


I want to use pbr on a firewall.

I want to set up the following:

I have a proxy in an dmz configured in the firewall.

I want to rederect all http and https traffic through te firewall.

So how is it possible to let all outgoing www traffic go pass the proxy in the dmz.

Pbr is working with an normal router but not with the fwsm.

Any help is welkom

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mrinmoy.m Thu, 03/08/2007 - 18:37
User Badges:

Hi Pal

U dont require a pbr to redirect all http & https traffic to proxy in DMZ. U create a nat 0 for all inside subnets and do a static nat for the proxy server with a public ip on the fwsm.

On the systems in inside zone configure the proxy settings with the proxy server ip in ur dmz.

On the router point a static route for the natted public ip towards the fwsm outside interface and remove all global command from fwsm.

mnieuwendijk Thu, 03/08/2007 - 22:34
User Badges:

Ok i know.

But what i want is to rederect all http and https traffic to the proxy in the dmz.

So even if a client settings uses no proxy or an another proxy i want to rederect the traffic.

Thats why i thought i have to use pbr.



This Discussion