CSS 11503 Inline Installation

Unanswered Question
Jun 22nd, 2009
User Badges:

I want to add a CSS 11503 as an inline to a router ethernet port to intercept all TCP traffic. What additional configuration is required to make this CSS act as a transparent proxy and initiate the sessions and start them with its IP.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Gilles Dufour Tue, 06/23/2009 - 02:49
User Badges:
  • Cisco Employee,

For all TCP traffic or just HTTP ?

Do you want the CSS to redirect the traffic to a cache or proxy ???


We can only spoof the L7 traffic ... so HTTP or FTP.


So, for http, you will need to configure a content rule to catch


protocol tcp

port 80


And you always need to send the traffic somewhere.

So you will need to at least configure a service for your default gateway .

Make the service transparent and add it to your catch-all content rule.


Gilles.

Actions

This Discussion