Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1249
Views
0
Helpful
1
Replies

Ironport S370 as the URL Filtering Server of ASA

jyothydas
Level 1
Level 1

‎06-07-2012 11:40 PM - edited ‎03-11-2019 04:17 PM

Is it possible to make Ironport S370 as the URL filtering server of ASA. I currently see only Websense and SmartFilter as the default option. Is this possible with just these two devices ( without using a third server for WCCP) ?

Currently intranet users browse though WSA ( all are on same network). I now want WiFi users ( in different zone, different security level) to also use the WSA instead of using the CSC.

WSA ASA WCCP.jpg

Labels:
0 Helpful
1 Reply 1

deyster94
Level 5
Level 5

‎06-08-2012 07:46 AM

Yes, you have to use WCCP to redirect the traffic to the Ironport.  It would look something like this:

access-list ironport-wccp extended permit ip host X.X.X.X any

X.X.X.X is the IP address of your Ironport appliance.  If you have more then one, just add the same ACL with it's IP address listed.

wccp web-cache group-list ironport-wccp

wccp interface INT-NAME web-cache redirect in

These two commands will direct the traffic to the WSA.  INT-NAME is the name of the interface on the ASA that you want web traffic redirected on.

After you get this configured, try to browse to the web on the wireless network.  Then do a show wccp from the ASA and you should see packets being directed to the Ironport.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card