?
Solved

Capturing internet traffic (http/https) across the Cisco 2911 router

Posted on 2015-01-19
6
Medium Priority
?
362 Views
Last Modified: 2016-02-25
Hi there,
I need to capture internet traffic to get it filtered with Sophos utm across the cisco 2911 router.  What/where and how is the best way of doing it.  Attached is my network diagram.  How to configure it in easy steps?  Please note that at the moment UTM sophos has no option of configuring wccp.
Thanks  Need help

Note: I had websense servers installed on both sites and they work fine.  They can filter and see traffic from site 2 on site 1.
networksetup.docx
0
Comment
Question by:amanzoor
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 20

Accepted Solution

by:
José Méndez earned 1600 total points
ID: 40560633
Is HTTP traffic the only one affected? Can you ping from site 2 over to site 1?

This steps may help
http://www.cisco.com/c/en/us/td/docs/ios/12_4t/12_4t11/ht_rawip.html
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40560694
Willywilburwonka,
Both of my sites are working fine.  Its just that I would like to capture the traffic for site 2 on the Sophos UTM (on site 1) for filtering.  Note that I had installed websense filtering servers (one on both sites) and they see the traffic.  As I said UTM Sophos at the moment only sees traffic from site 1 only.  Need help.
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 40560721
So try the link I shared.
0
Moving data to the cloud? Find out if you’re ready

Before moving to the cloud, it is important to carefully define your db needs, plan for the migration & understand prod. environment. This wp explains how to define what you need from a cloud provider, plan for the migration & what putting a cloud solution into practice entails.

 
LVL 11

Assisted Solution

by:naderz
naderz earned 400 total points
ID: 40565703
websense works differently than Sofos UTM. The traffic needs to travel thru the Sofos for it to work. And, "ip traffic-export" will adversely affect performance.

I suggest another UTM at Site2. Or, connect site 2 with another router and then send all traffic thru UTM and to the Internet. Make it layered.
0
 
LVL 4

Author Comment

by:amanzoor
ID: 40570491
Thanks guys for the feedback;
Willywilburwonka;
I did export the traffic.  The UTM Sophos would see the traffic and will NOT filter.  Performance of the UTM was degraded right away as suggested by naderz.  

naderz:
Years back.  We had installed UTM on SITE 2 and it worked.  Just to avoid more expense I was wondering if in our situation buying another UNIT (UTM) would be avoided.  I guess not?
0
 
LVL 4

Author Closing Comment

by:amanzoor
ID: 40570495
Thanks for your time guys.  Appreciate it.
0

Featured Post

[Webinar] Lessons on Recovering from Petya

Skyport is working hard to help customers recover from recent attacks, like the Petya worm. This work has brought to light some important lessons. New malware attacks like this can take down your entire environment. Learn from others mistakes on how to prevent Petya like worms.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the hope of saving someone else's sanity... About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
The Cisco RV042 router is a popular small network interfacing device that is often used as an internet gateway. Network administrators need to get at the management interface to make settings, change passwords, etc. This access is generally done usi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month9 days, 18 hours left to enroll

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question