hi, i want to configure proxy interception feature on my network. There are about 10 vlans on my network and i want to configure policy routing so that the traffic for www should be intercepted and forwarded to the proxy server. For that i want to configure policy routing, is it possible to configure route-map and apply that route-map to interface VLAN. I have 3750 and 4948 switches.
well you need three interfaces:
one towards the customer/client where you do PBR on incoming packets
one ouside WAN interface towards the internet
one dmz / horizontal link where you place the proxy / web cache
Incoming packets from users will be sent to the proxy ,the proxy will go to the internet opening a TCP session on behalf of the customer.
So you will have two coordinated TCP sessions
user <-----> proxy TCP_A
proxy <-----> real web server TCP_B
Return path will be
outside -> proxy -> || proxy --> user
TCP_B || TCP_A
Hope to help