Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

using transparent proxy in DMZ


my costumer uses Linux Firewall (iptables) in his network and when a workstation try to access the Internet the Linux Firewall sends its requisitation to the proxy server that is in the DMZ network. This happening without aditionals proxy configuration in workstations (this is Transparent Proxy).

Well, can I configure it in PIX Firewall? I want that every call to somebody in ports 80 and 443 that the PIX intercept and send to proxy in DMZ.



Re: using transparent proxy in DMZ

Uhm, let´s see if I understand what you´re up to. Is it correct that you want all traffic that enters you outside interface (from the Internet) at TCP port 80 and 443 to another port on the DMZ. If this is the case, then the answer is yes, it is possible. You will need something like this then:

static (dmz, outside) tcp interface 80 8080

static (dmz, outside) tcp interface 443 8181

It will help if you provide more detailed information on what you want to achieve if you want further assistance.

Hope this helps,


New Member

Re: using transparent proxy in DMZ

Ok Leo, thanks for your reply. Well, I really want that all machines inside my network through the proxy when accessing the Internet, so, all traffic that enters my inside interface (to the Internet) with any port source to TCP port 80 and 443 port to any destination must through the Proxy. Is the same command?


CreatePlease login to create content