WCCP and use of Inbound/outbound ACLs

rolmarti · ‎10-13-2013

Hi Guys,

I was looking for some documentation regarding the flow of packet processing on a given interface, namely with use of WCCP.

I have a design requirement to enable WCCP on interfaces with inbound and outbound security ACLs, I was wondering what is the order in which a packet gets processed on an interface, does it get redirected before security inbound ACL is processed? And going outbound?

Would I need to add the Cache engine IP to the security ACLs?

I can't disable these ACLs, any gotcha's with using L2 redirection?

Thanks

rolmarti · ‎10-27-2013

FYI I had found this:

http://www.cisco.com/en/US/prod/collateral/routers/ps9343/white_paper_c11_502351.html

Inside to outside:

1. decryption

2. input ACL

3. inspect

4. routing

5. WCCP

6. Network Address Translation (NAT) inside to outside

7. crypto (check map and mark for encryption)

8. output ACL

9. inspect

Outside to inside:

1. decryption

2. input ACL

3. inspect

4. NAT outside to inside

5. WCCP

6. routing

7. crypto (check map and mark for encryption)

8. output ACL

9. inspect

WCCP and use of Inbound/outbound ACLs

【原创】SVI上ACL的入方向/出方向(inbound/outbound)

ASA: Inbound/Outbound方向それぞれのVPN Filter設定方法と注意点

Re: Agent Greeting for Outbound & Inbound Calls

Ignore ACLs.

inbound & outbound traffic