RE: [squid-users] Cisco ASA -> Squid proxy

From: Dhyanesh Ramaiya <>
Date: Sun, 6 Apr 2008 19:17:28 +0300

Hi Nick,

You may try the following. I have used it on Cisco routers to redirect the
traffic to a Squid proxy sitting on the local LAN:

interface Vlan1
 ip address
 ip policy route-map proxy-redirect

route-map proxy-redirect permit 100
match ip address 111
set ip next-hop
! IP is the IP of the Squid box with a single NIC

access-list 111 deny tcp any any neq www
access-list 111 deny tcp host any
access-list 111 permit tcp any any


-----Original Message-----
From: Henrik Nordstrom []
Sent: Sunday, April 06, 2008 12:05 PM
To: Nick Duda
Subject: Re: [squid-users] Cisco ASA -> Squid proxy

sön 2008-04-06 klockan 04:56 -0400 skrev Nick Duda:
> Does anyone know if the Cisco ASA has the ability to redirect port
> traffic (80/443) to a squid proxy server? I want to setup a
> transparent proxy and would prefer not to do the iptables thing on the
> squid box. I want to keep the gateway of clients going to the cisco
> gear.

No idea, but another easy deploy option is to set up the proxy as a bridge
between the LAN and the gateway.

Received on Sun Apr 06 2008 - 10:18:02 MDT

This archive was generated by hypermail 2.2.0 : Thu May 01 2008 - 12:00:04 MDT