Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
203
Views
0
Helpful
1
Replies

cisco asa and wccp

cstpierre4
Level 1
Level 1

‎08-11-2015 01:44 PM - edited ‎03-11-2019 11:24 PM

Hello,

 

Trying to setup bluecoat proxysg and cisco asa using wccp. I have had some feed back saying this is not a good idea. Has anyone successfully setup a cisco asa and used wccp to communicate with a proxy for web filtering?

 

My other solution would be to put the proxy inline of the firewall but im worried about resources on the proxy as it will then have to look at all traffic.

 

Any input would be great. Thanks!

 

 

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-11-2015 03:03 PM

It's been a while since I've done it; but yes that's certainly do-able.

Here's the configuration I used - assuming an inside interface nameif "inside" and, of course, substitute your own values for the bracketed ones below:

object-group network inside_networks
 network-object <subnet a, mask>
 network-object <subnet b, mask>

access-list inside_networks extended permit ip object-group inside_networks any

access-list Bluecoat extended permit ip host <bluecoat proxyaddress> any

wccp 1 redirect-list inside_networks group-list Bluecoat password <password>
wccp interface inside 1 redirect in
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card