How matters order of access-lists for different Gateway of last
thanks for your reply.
What I try to do is quite easy. From a customers site where several public WIFI-Nets for the teenants are running, the www-traffi only must in order to comply with local law be routeted through a proxy to log it.
So I managed to configure a Cisco 3640 box which makes a DSL-PPPoE Internet-Con and as well a VPN Tunnel to our ISP PoP.
The www-concerned traffic goes through the VPN to us, we log it and that's it.
For some magic and thanks to your post I get now the www-traffic and all other if I wish through the tunnel to our site.
What was missing was an ip nat inside on our site on the tunnel interface.
I never knew that this is possible as the traffic at this point is still encrypted.
Anyway, I am unable to finalize the last step:
On our site I too stupid to manage, that the www traffic we receive on the tun 0 interface goes straight to the port 80 of the squid proxy what is directly connected.
instead doning so, our router shots the traffic directly over our backbone into the internet.
I would much appreciate it if you could help me with this fiinal step.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...