Link to home
Start Free TrialLog in
Avatar of condorcape
condorcape

asked on

Traffic redirection with ASA 5510

I'm trying to find out if it's possible to do traffic redirection with an ASA 5510.

I basically want to say redirect All HTTP traffic going to site X to site A.

Possible?
ASKER CERTIFIED SOLUTION
Avatar of harbor235
harbor235
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of condorcape
condorcape

ASKER

I know you can do things like that with squid.

http://ex-parrot.com/~pete/upside-down-ternet.html :)

I basically want to redirect all traffic that goes to facebook to an error message running on one of our internal servers.
I mean iptables*

I'm basically looking for the equivalent of this command;

/sbin/iptables -A PREROUTING -s 192.168.0.0/255.255.255.0 -p tcp -j DNAT --to-destination 64.111.96.38


That would be redirection from outside to inisde, i think he means to redirect to a differnet site all together, am i correct in assuming this? if its just port redirection outside to inside then yes the asa can do that.

harbor235 ;}
I think it needs to be done on the proxy :(

Next step is getting WCCP & squid to work.

Thanks for the help!