Solved

Capturing internet traffic (http/https) across the Cisco 2911 router

Posted on 2015-01-19
6
352 Views
Last Modified: 2016-02-25
Hi there,
I need to capture internet traffic to get it filtered with Sophos utm across the cisco 2911 router.  What/where and how is the best way of doing it.  Attached is my network diagram.  How to configure it in easy steps?  Please note that at the moment UTM sophos has no option of configuring wccp.
Thanks  Need help

Note: I had websense servers installed on both sites and they work fine.  They can filter and see traffic from site 2 on site 1.
networksetup.docx
0
Comment
Question by:amanzoor
  • 3
  • 2
6 Comments
 
LVL 20

Accepted Solution

by:
José Méndez earned 400 total points
ID: 40560633
Is HTTP traffic the only one affected? Can you ping from site 2 over to site 1?

This steps may help
http://www.cisco.com/c/en/us/td/docs/ios/12_4t/12_4t11/ht_rawip.html
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40560694
Willywilburwonka,
Both of my sites are working fine.  Its just that I would like to capture the traffic for site 2 on the Sophos UTM (on site 1) for filtering.  Note that I had installed websense filtering servers (one on both sites) and they see the traffic.  As I said UTM Sophos at the moment only sees traffic from site 1 only.  Need help.
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 40560721
So try the link I shared.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 11

Assisted Solution

by:naderz
naderz earned 100 total points
ID: 40565703
websense works differently than Sofos UTM. The traffic needs to travel thru the Sofos for it to work. And, "ip traffic-export" will adversely affect performance.

I suggest another UTM at Site2. Or, connect site 2 with another router and then send all traffic thru UTM and to the Internet. Make it layered.
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40570491
Thanks guys for the feedback;
Willywilburwonka;
I did export the traffic.  The UTM Sophos would see the traffic and will NOT filter.  Performance of the UTM was degraded right away as suggested by naderz.  

naderz:
Years back.  We had installed UTM on SITE 2 and it worked.  Just to avoid more expense I was wondering if in our situation buying another UNIT (UTM) would be avoided.  I guess not?
0
 
LVL 4

Author Closing Comment

by:amanzoor
ID: 40570495
Thanks for your time guys.  Appreciate it.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question