Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Default gateway in PIX

I want to integrate a virus scanner m/c for http taffic and mail traffic with PIX. The virus scanner m/c is required to be put at DMZ. How can I do this and how shall I write "ip route ......." command for this purpose.

--ejaj

5 REPLIES
Anonymous
N/A

Re: Default gateway in PIX

Silver

Re: Default gateway in PIX

There isn't a good way of doing this for the pix. You possibly can do it with a router in front of or behind the pix.

For http use from the inside of your pix, you would most likely need the router between the inside int of the pix, and your userbase.

For smtp filtering in and out of your network, you can probably make this work on your own. I imagine that if you configure your mailservers to send all mail outbound through the virus scanner, that should take care of all outbound filtering. Set up the smtp filtering device with your only mx record, and that should ensure that all inbound mail is scanned

New Member

Re: Default gateway in PIX

Agreed. I implemented smtp the same way already and it is working fine. Now How to do for http traffic.

--ejaj

New Member

Re: Default gateway in PIX

HI.

Consult the manuals/support of the content filter box you have. It probably supports acting as http proxy server, and then you can configure the workstations to use it as a proxy.

I have helped someone with a similar solution using a McAffee content filter server (don't remember the name of it).

That server had two options for configuration, and we have choosed to implement it as a proxy server + mail relay.

So the traffic was redirected to the content filter at the application level (browser and mail servers configuration), and the pix was configurred to enforce it (block direct traffic).

The other option was to place it in the path of the traffic as a transparent device.

Yizhar

New Member

Re: Default gateway in PIX

Dear Izhar

Shall you explain more. I feel this is exactly what I want to do.

-----ejaj

103
Views
0
Helpful
5
Replies
CreatePlease to create content