Redirect Packets based on source IP?

[intelwizrd]

I just received a request to redirect HTTP request packets from certain IP blocks to a specific server. Is there a way to do this with a router or a firewall?

I have a c7206VXR and a PIX515eUR.

thanks for your help.

----------------------------
Josh
CCNA, MCSE 2003(in progress)

 

[leedsit]

Hi,

you can use Policy Routing to route traffic to a certain destination with source addresses.

I.E

Ip access-list standard 10
permit ip 10.10.10.10

Route-map Example permit 20
match ip address 10
set next-hop x

Then apply it to the incoming interface

interface ethernet 0/0
ip policy route-map example

Lee


LEEroy
MCNE6,CCNA2,CWNA, Project+, CCSA

 

[intelwizrd]

just a few quick follow up questions,

This wont allow me to specify only http packets or some other specific protocol, correct?

(i guess i could just use an acl to block all of the other packets so the firewall doesnt have to deal with it)

Will this work for web requests? In the sense that if you send a request to IPA and get a response from IPB, wont the requesting host ignore it?

These are all public IP's and i want to take traffic comming from the internet via a DS3 and send them to an IP sitting off of an ethernet interface.

i dont really have a lot of chances to test this and if i screw it up, lets just say a lot of people will be very mad at me.

thanks again for your help.

----------------------------
Josh
CCNA, MCSE 2003(in progress)

 

[leedsit]

Hi,

you can redirect using layer 3 / 4 information.

I.E

Ip access-list extended test
permit tcp host 10.10.10.10 any eq 80
permit tcp 10.10.10.0 0.0.0.255 any eq 443

etc....

LEEroy
MCNE6,CCNA2,CWNA, Project+, CCSA