Can I route traffic through CISCO ASA router based on source domain?

I have an ASA 5510 and only 1 public IP Address.   I can route traffic to different servers based on port-forwarding, but I need to route traffic to different servers based on source domain.  Can I do this in the ASA and how?

For example

traffic coming from domain1.com and hitting ip address x.x.x.x (ASA router) on port 80 should go to 192.168.0.1

traffic coming from different.domain.net and hitting ip address x.x.x.x (ASA router) on port 80 should go to 192.168.0.2



Cisco Adaptive Security Appliance Software Version 7.2(4)
Device Manager Version 5.2(4)

Thanks
DanRaposoAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Garry GlendownConsulting and Network/Security SpecialistCommented:
If you need this to happen based on the domain-name, I don't know any way this can be done. You can set up policy-nat for IP addresses though ...
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
kcoectCommented:
That's like asking the ASA to do host header redirection that IIS takes care of on a Windows server, I can't think of any network device that can do that (like I said, it's usually done at the web server).
0
DanRaposoAuthor Commented:
The issue is (I think)    the web server has a private address and the other http site will be hosted on a second system.  I am sure this can be done, but thought it would be easier at the point of entry.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

Garry GlendownConsulting and Network/Security SpecialistCommented:
Are the accesses coming from two fixed IP addresses (or at least a fixed address for one of the sites)? If so, as I mentioned, you could set it up with policy NAT. Otherwise, by setting up a reverse proxy (e.g. using Squid), you might be able to get this working even with symbolic addresses, though I'd have to check out the docs a bit ...
0
pistanuCommented:
Specifies the match criteria.

Although there are many route-map matching options, here you can specify only length and/or ip address.

•length matches the Level 3 length of the packet.

•ip address matches the source or destination IP address that is permitted by one or more standard or extended access lists.

If you do not specify a match command, the route map applies to all packets.
0
DanRaposoAuthor Commented:
No fixed IP Address.  It is coming from a domain where many people can access on that domain.   It sounds to me like this isn't something that I can do easily.  Should I close this as answered "can't be done"
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.