cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1201
Views
0
Helpful
0
Replies

WCCP Configuration HTTP and HTTPS

Mark Baggott
Level 1
Level 1

Looking for anyone that might have a clue in on this, im attempting to configure a pair of routers to use WCCP to redirect HTTP and HTTPS traffic to two content keeper devices. The network im building is going to be used for a guest internet connection where defining proxies on end devices would be unusable.

I'll drop the configs in below but for now what i have are 2 cisco 3925 routers configured for HSRP. 2 content keeps running squid for the cache engine. with my current configurations, I have wccp web-cache and wccp service 70 configured (all 4 devices are available/usable in both services). this is a layer 2 setup. HTTP traffic is picked up and redirected to the content keepers without issue. https traffic does not appear to be detected by the routers. I have chosen not to use ACLS for WCCP and use the redirect in because we want to capture http(s) traffic from all hosts.

for HTTP, I see hits counters rise on the router under show ip wccp, i see hit counters for the content keepers increase, i see http traffic on the firewall from the content keepers and I get the web page on the device

For HTTPS I do not see hit counters under wccp increase, I do not see any traffic on the content keepers bridge, and i see traffic on the firewall from the hosts orginal ip address.

interface0/2 internal LAN

interface 0/0 content keepers (no WCCP commands)

interface 0/1 gateway firewalls. (no WCCP commands

ip wccp check services all

ip wccp web-cache

ip wccp 70

interface GigabitEthernet0/2

description To Lan

ip address x.x.x.x

ip wccp web-cache redirect in

ip wccp 70 redirect in

standby 1 ip x.x.x.x

standby 1 priority 150

standby 1 preempt

duplex auto

speed auto

Global WCCP information:

    Router information:

        Router Identifier:                   x.x.x.2

    Service Identifier: web-cache

        Protocol Version:                    2.00

        Number of Service Group Clients:     2

        Number of Service Group Routers:     2

        Total Packets Redirected:            17999

          Process:                           0

          CEF:                               17999

        Service mode:                        Open

        Service Access-list:                 -none-

        Total Packets Dropped Closed:        0

        Redirect access-list:                110

        Total Packets Denied Redirect:       0

        Total Packets Unassigned:            0

        Group access-list:                   -none-

        Total Messages Denied to Group:      0

        Total Authentication failures:       0

        Total GRE Bypassed Packets Received: 0

          Process:                           0

          CEF:                               0

    Service Identifier: 70

        Protocol Version:                    2.00

        Number of Service Group Clients:     2

        Number of Service Group Routers:     2

        Total Packets Redirected:            0

          Process:                           0

          CEF:                               0

        Service mode:                        Open

        Service Access-list:                 -none-

        Total Packets Dropped Closed:        0

        Redirect access-list:                -none-

        Total Packets Denied Redirect:       0

        Total Packets Unassigned:            0

        Group access-list:                   -none-

        Total Messages Denied to Group:      0

        Total Authentication failures:       0

        Total GRE Bypassed Packets Received: 0

          Process:                           0

          CEF:                               0

Show details and show service attached.

0 Replies 0
Review Cisco Networking for a $25 gift card