Create a profile:
esr(config)# ip http profile list1
esr(config-profile)# default action permit
esr(config-profile)# urls local test1 action redirect redirect-url http://test.loc
esr(config-profile)# exit
Enable proxying on the interface by profile 'list1':
esr(config)# interface gi 1/0/1
esr(config-if)# ip http proxy list1
esr(config-if)# ip https proxy list1
If you use Firewall, create permissive rules for it:
For example we use the ESR-20 which has 4 CPUs.
For the http proxy we need to open ports 3128 to 3131
For the https proxy we need to open ports 3132 to 3135
Create a proxy server profile:
esr(config)# object-group service proxy
esr(config-object-group-service)# port-range 3128-3135
esr(config-object-group-service)# exit
Create a permissive interzonal interaction rule:
esr(config)# security zone-pair LAN self
esr(config-zone-pair)# rule 50
esr(config-zone-pair-rule)# action permit
esr(config-zone-pair-rule)# match protocol tcp
esr(config-zone-pair-rule)# match destination-port proxy
esr(config-zone-pair-rule)# enable
esr(config-zone-pair-rule)# exit
esr(config-zone-pair)# exit
NTP(NetworkTimeProtocol)— network protocol for synchronizing the internal clock of equipment using IP
networks, uses the UDP protocol for its operation, takes into account transmission times and uses algorithms
to achieve high precision time synchronization.
16.5.3 Configuration algorithm
Step Description Command Keys
1 Enable NTP. esr(config)# ntp enable
2 Set the IP address of the NTP server or
NTP synchronization participant.
esr(config)# ntp { server |
peer } { <IP> }
<IP> – destination IP address
(gateway), defined as
AAA.BBB.CCC.DDD where each part
takes values of [0..255].