Firewall Wizards mailing list archives

RE: Forwarding traffic to an active IDS/Firewall

From: "Paul Melson" <pmelson () gmail com>
Date: Thu, 21 Jul 2005 12:05:49 -0400

I'm not sure I have a clear understanding of what you're asking for, but in
effect, the 'fwd' command of ipfw does simple policy routing.  Depending on
the model and OS version of your switch, policy routing should be possible.
See:
http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration
_guide_chapter09186a00801cdf81.html#1260543
 
PaulM


-----Original Message-----
Subject: [fw-wiz] Forwarding traffic to an active IDS/Firewall

Hi all,

Anyone knows how I can forward all traffic the came to a Cisco Catalyst
swith to an gateway to do some IDS/Firewall/Traffic Shape?
In ipfw (freebsd) this would be done by an "fwd" rule to forward all packets
to an forced gateway, this can be done in an cisco device or i need to
emulate all the valid IPs on the switch and use a VLAN with the servers so
the IDS receive the packets and forward to the internal VLAN, this would be
a little harmful ;)


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Forwarding traffic to an active IDS/Firewall Vinicius Pavanelli Vianna (Jul 21)
- RE: Forwarding traffic to an active IDS/Firewall Paul Melson (Jul 21)
- Re: Forwarding traffic to an active IDS/Firewall Dale W. Carder (Jul 21)
  - Re: Forwarding traffic to an active IDS/Firewall Vinicius Pavanelli Vianna (Jul 22)
- Re: Forwarding traffic to an active IDS/Firewall Aaron Smith (Jul 21)