Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN routing problem

Hello everybody,

I have a vpn network with 4 sites, 4 cisco routers and i used Ipsec with preshare keys. I would like to redirect all Internet traffic of sites to a central site that will route it to an ISA server that will check the traffic. the vpn is already setup but i don't know how to redirectt ip packets on an interface by identifing the source address IP of the packet?

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: VPN routing problem

if you are only concerned about clients using vpn traffic, what you could do is set all IE or firefox browsers (this can be automated) to use a proxy for internet access. The routers would only allow the ipsec traffic and not clients directly going over the internet.

Each client would send their web requests to the proxy (proxy should have a private ip address) and as long as you have the internal routing between offices working correctly they will route to the proxy server ISA.

hope this helps,

(please rate this post if you found it useful)

3 REPLIES
New Member

Re: VPN routing problem

Can you be more specific, do you mean that you have 4 offices that interconnect to each other using IPSEC and you want to forward only the internet traffic to one site where ISA server resides?

Do you have direct access using split tunneling currently at the 4 offices?

New Member

Re: VPN routing problem

that is the graph of the network i would like to get.

New Member

Re: VPN routing problem

if you are only concerned about clients using vpn traffic, what you could do is set all IE or firefox browsers (this can be automated) to use a proxy for internet access. The routers would only allow the ipsec traffic and not clients directly going over the internet.

Each client would send their web requests to the proxy (proxy should have a private ip address) and as long as you have the internal routing between offices working correctly they will route to the proxy server ISA.

hope this helps,

(please rate this post if you found it useful)

103
Views
0
Helpful
3
Replies