The only difference is I am using 2 Nexus 7000  as the core router before the ASA 5525 firewalls. 

Yes that is correct, just one subnet's (10.2.254.0/24)  0.0.0.0 0.0.0.0 route to 192.168.1.3. The rest of the network would continue to use 0.0.0.0 0.0.0.0 192.168.1.2 as its default route which is currently in the nexus.

Sorry for the simplicity. I have been told that I just need to change the 192.168.1.2 to 192.168.1.3 but I do not what it for the rest of the network. 

What is this device between the new firewall and the Core?

Barracuda 410

The most practical and flexible way is to deploy this using WCCP. On your filtering ACL you only allow that subnet and deny the rest.

Example from the cisco website:

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/15-02SG/configuration/guide/config/wccp.html

Switch(config)# ip access-list extended 100
 Switch(config-ext-nacl)# permit ip 10.2.254.0 255.255.255.0 any 
 Switch(config-ext-nacl)# exit
 Switch(config)# ip wccp web-cache redirect-list 100
 Switch(config)# interface xxx {the interface going to the barracuda}
 Switch(config-if)# ip wccp web-cache redirect out

Check this out and I hope it will help:

https://techlib.barracuda.com/display/BWFv60/WCCP+Deployment/printable

and

http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_2/nx-os/unicast/configuration/guide/l3_cli_nxos/wccp.html

let me know if you need further assistance.

Thanks,

Manny.

I understand that is how to allow only 10.2.254.0/24 traffic out the interface. The issue I have is routing that subnet to another set of firewalls that has the barracuda connected for testing. The default route to 192.168.1.2 has to stay will it is in production. I need to set up the 10.2.254.0/24 to go out to the internet for last resort on 192.168.1.3. This is only for testing to verify that the connection is working and the filter is not blocking other options.

I say set because I have them 2 firewalls active/standby.

The example I gave above does not affect your current routing. What it will do is that all the traffic that if from the 10.2.254.0/24 subnet will be re-directed via WCCP out the interface that is facing those firewalls. 

In practice you need to put the Barracuda before the firewall, and then the external going traffic will be sent by the web-filter [Barracuda] on its external facing interface to the firewalls.

To the best of my knowledge this solution, provided should work just fine for this particular need. The flexibility is that you can add and remove subnets or hosts from your ACL without affecting other traffic whatsoever.

Remember it is not about routing the traffic but directing it to the correct place you want it to go.

Thanks,

Manny.