RE: [fw-wiz] Forwarding traffic to an active IDS/Firewall
From: Paul Melson (pmelson_at_gmail.com)
Date: 07/21/05
- Previous message: Marcus J. Ranum: "Re: [fw-wiz] VOIP versus PBX"
- In reply to: Vinicius Pavanelli Vianna: "[fw-wiz] Forwarding traffic to an active IDS/Firewall"
- Next in thread: Dale W. Carder: "Re: [fw-wiz] Forwarding traffic to an active IDS/Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "'Vinicius Pavanelli Vianna'" <ds@hacked.com.br>, <firewall-wizards@honor.icsalabs.com> Date: Thu, 21 Jul 2005 12:05:49 -0400
I'm not sure I have a clear understanding of what you're asking for, but in
effect, the 'fwd' command of ipfw does simple policy routing. Depending on
the model and OS version of your switch, policy routing should be possible.
See:
http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration
_guide_chapter09186a00801cdf81.html#1260543
PaulM
-----Original Message-----
Subject: [fw-wiz] Forwarding traffic to an active IDS/Firewall
Hi all,
Anyone knows how I can forward all traffic the came to a Cisco Catalyst
swith to an gateway to do some IDS/Firewall/Traffic Shape?
In ipfw (freebsd) this would be done by an "fwd" rule to forward all packets
to an forced gateway, this can be done in an cisco device or i need to
emulate all the valid IPs on the switch and use a VLAN with the servers so
the IDS receive the packets and forward to the internal VLAN, this would be
a little harmful ;)
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Marcus J. Ranum: "Re: [fw-wiz] VOIP versus PBX"
- In reply to: Vinicius Pavanelli Vianna: "[fw-wiz] Forwarding traffic to an active IDS/Firewall"
- Next in thread: Dale W. Carder: "Re: [fw-wiz] Forwarding traffic to an active IDS/Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
