Solved

Best open srouce Transperent Proxy to be used along with Cisco ASA5505

Posted on 2014-09-11
5
191 Views
Last Modified: 2014-10-20
Hi Experts,

My set up would be as follows;


```````````````````````````````````````````````````````````````
Public <<>> Cisco ASA <<>> (eth0)Transparent Proxy(eth1) <<>> Client
                                                                                                             >> Server(HTTP)
```````````````````````````````````````````````````````````````

`````````````````````````````````````
ASA outside: x.x.x.x
ASA inside: 192.168.1.254

Proxy eth0: 192.168.1.253
eth0 gateway: 192.168.1.254
Proxy eth1: Bridge

Client IP: 192.168.1.10
Client Gateway: 192.168.1.254
DNS: Internal DNS server + ISP DNS

Server IP: 192.168.1.11
Server Gateway: 192.168.1.254
DNS: Internal DNS server + ISP DNS
````````````````````````````````````
My requirements:
1. Client should be able to brows the Internet through the proxy
2. HTTP traffic should be able to forward to the internal web server

I have tried several open source products such as Zentyal, Untangle, but so far it's didn't work.
Can you please advise me on this ? Any recommendations/Howtos on anything products ?

Thanks a lot for your time !
0
Comment
Question by:Shakthi777
5 Comments
 
LVL 57

Assisted Solution

by:Pete Long
Pete Long earned 250 total points
ID: 40318751
If it were my project, I would buy Websense - and itegrate that with the ASA (I do like websense,  but some find it a little expensive) the ASA traditionally only supports N2H2 and Websense, but that does NOT stop you deploying another proxy filtering solution behind the firewall and pointing your internal clients at that.

I'd NOT recommend anyhting WCCP based, they always tend to be a bit clunky (sorry Cisco).

PL
0
 
LVL 2

Accepted Solution

by:
vpnttg earned 250 total points
ID: 40318911
Please check “Cisco ASA and Squid with WCCP2”:
http://wiki.squid-cache.org/ConfigExamples/Intercept/CiscoAsaWccp2
0
 
LVL 11

Expert Comment

by:sumeshbnr
ID: 40318947
Please describe HTTP traffic should be able to forward to the internal web server .It is not clear
0
 
LVL 7

Expert Comment

by:unfragmented
ID: 40318963
seconding squid and wccp.  For free/open source its pretty hard to beat.
0
 

Author Closing Comment

by:Shakthi777
ID: 40391409
Thanks !
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now