Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Traffic redirection with ASA 5510

Posted on 2008-10-01
5
Medium Priority
?
1,327 Views
Last Modified: 2009-12-16
I'm trying to find out if it's possible to do traffic redirection with an ASA 5510.

I basically want to say redirect All HTTP traffic going to site X to site A.

Possible?
0
Comment
Question by:condorcape
  • 3
  • 2
5 Comments
 
LVL 32

Accepted Solution

by:
harbor235 earned 375 total points
ID: 22614293


Not possible, you need a geographical load balancer. There are some other things you could do with DNS but it requires changing the url;

i.e www.mydomain.com  (site1)
     www.mydomain2.com (site2)

harbor235 ;}
0
 

Author Comment

by:condorcape
ID: 22614343
I know you can do things like that with squid.

http://ex-parrot.com/~pete/upside-down-ternet.html :)

I basically want to redirect all traffic that goes to facebook to an error message running on one of our internal servers.
0
 

Author Comment

by:condorcape
ID: 22614384
I mean iptables*

I'm basically looking for the equivalent of this command;

/sbin/iptables -A PREROUTING -s 192.168.0.0/255.255.255.0 -p tcp -j DNAT --to-destination 64.111.96.38
0
 
LVL 32

Expert Comment

by:harbor235
ID: 22614680


That would be redirection from outside to inisde, i think he means to redirect to a differnet site all together, am i correct in assuming this? if its just port redirection outside to inside then yes the asa can do that.

harbor235 ;}
0
 

Author Comment

by:condorcape
ID: 22614726
I think it needs to be done on the proxy :(

Next step is getting WCCP & squid to work.

Thanks for the help!
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Outsource Your Fax Infrastructure to the Cloud (And come out looking like an IT Hero!) Relative to the many demands on today’s IT teams, spending capital, time and resources to maintain physical fax servers and infrastructure is not a high priority.
In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question