?
Solved

Capturing internet traffic (http/https) across the Cisco 2911 router

Posted on 2015-01-19
6
Medium Priority
?
370 Views
Last Modified: 2016-02-25
Hi there,
I need to capture internet traffic to get it filtered with Sophos utm across the cisco 2911 router.  What/where and how is the best way of doing it.  Attached is my network diagram.  How to configure it in easy steps?  Please note that at the moment UTM sophos has no option of configuring wccp.
Thanks  Need help

Note: I had websense servers installed on both sites and they work fine.  They can filter and see traffic from site 2 on site 1.
networksetup.docx
0
Comment
Question by:amanzoor
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 20

Accepted Solution

by:
José Méndez earned 1600 total points
ID: 40560633
Is HTTP traffic the only one affected? Can you ping from site 2 over to site 1?

This steps may help
http://www.cisco.com/c/en/us/td/docs/ios/12_4t/12_4t11/ht_rawip.html
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40560694
Willywilburwonka,
Both of my sites are working fine.  Its just that I would like to capture the traffic for site 2 on the Sophos UTM (on site 1) for filtering.  Note that I had installed websense filtering servers (one on both sites) and they see the traffic.  As I said UTM Sophos at the moment only sees traffic from site 1 only.  Need help.
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 40560721
So try the link I shared.
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 
LVL 11

Assisted Solution

by:naderz
naderz earned 400 total points
ID: 40565703
websense works differently than Sofos UTM. The traffic needs to travel thru the Sofos for it to work. And, "ip traffic-export" will adversely affect performance.

I suggest another UTM at Site2. Or, connect site 2 with another router and then send all traffic thru UTM and to the Internet. Make it layered.
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40570491
Thanks guys for the feedback;
Willywilburwonka;
I did export the traffic.  The UTM Sophos would see the traffic and will NOT filter.  Performance of the UTM was degraded right away as suggested by naderz.  

naderz:
Years back.  We had installed UTM on SITE 2 and it worked.  Just to avoid more expense I was wondering if in our situation buying another UNIT (UTM) would be avoided.  I guess not?
0
 
LVL 4

Author Closing Comment

by:amanzoor
ID: 40570495
Thanks for your time guys.  Appreciate it.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question