Solved

Capturing internet traffic (http/https) across the Cisco 2911 router

Posted on 2015-01-19
6
350 Views
Last Modified: 2016-02-25
Hi there,
I need to capture internet traffic to get it filtered with Sophos utm across the cisco 2911 router.  What/where and how is the best way of doing it.  Attached is my network diagram.  How to configure it in easy steps?  Please note that at the moment UTM sophos has no option of configuring wccp.
Thanks  Need help

Note: I had websense servers installed on both sites and they work fine.  They can filter and see traffic from site 2 on site 1.
networksetup.docx
0
Comment
Question by:amanzoor
  • 3
  • 2
6 Comments
 
LVL 20

Accepted Solution

by:
José Méndez earned 400 total points
ID: 40560633
Is HTTP traffic the only one affected? Can you ping from site 2 over to site 1?

This steps may help
http://www.cisco.com/c/en/us/td/docs/ios/12_4t/12_4t11/ht_rawip.html
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40560694
Willywilburwonka,
Both of my sites are working fine.  Its just that I would like to capture the traffic for site 2 on the Sophos UTM (on site 1) for filtering.  Note that I had installed websense filtering servers (one on both sites) and they see the traffic.  As I said UTM Sophos at the moment only sees traffic from site 1 only.  Need help.
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 40560721
So try the link I shared.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 11

Assisted Solution

by:naderz
naderz earned 100 total points
ID: 40565703
websense works differently than Sofos UTM. The traffic needs to travel thru the Sofos for it to work. And, "ip traffic-export" will adversely affect performance.

I suggest another UTM at Site2. Or, connect site 2 with another router and then send all traffic thru UTM and to the Internet. Make it layered.
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40570491
Thanks guys for the feedback;
Willywilburwonka;
I did export the traffic.  The UTM Sophos would see the traffic and will NOT filter.  Performance of the UTM was degraded right away as suggested by naderz.  

naderz:
Years back.  We had installed UTM on SITE 2 and it worked.  Just to avoid more expense I was wondering if in our situation buying another UNIT (UTM) would be avoided.  I guess not?
0
 
LVL 4

Author Closing Comment

by:amanzoor
ID: 40570495
Thanks for your time guys.  Appreciate it.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the hope of saving someone else's sanity... About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
Tired of waiting for your show or movie to load?  Are buffering issues a constant problem with your internet connection?  Check this article out to see if these simple adjustments are the solution for you.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now