6509 with WCCPv2 enabled causing NAT translations to drop
We are having an issue with our 6509 core switch when we enable WCCPv2 to filter HTTP traffic through a web-cache proxy. The configuration we are using is as follows:
ip wccp 0
interface vlan 3
ip wccp 0 redirect out
Interface vlan 3 is the VLAN for our Internet traffic. We have also tried applying the redirect in on the interfaces where the user traffic resides with the same result. I have worked with Cisco TAC on this as well and so far the only solution as been to remove WCCP and reset the switch in order for the NAT translations to be working properly again. It seems like the issue could be memory related since a reset fixes this but I am more interested in finding out if we can somehow free the affected memory/buffers without having to reload the switch. As you can imagine with this being our core production switch, having to reload it at any time is a painful process since the entire production network is impacted. The switch has a SUP720 and is running IOS version 12.2(18)SXD7.
Any assistance or feedback would be greatly appreciated.
PRTG system in place running other sensors on the same host, which are working. Ive added syslog receiver sensor and receiving PRTG data from switch that increases drops, errors and warning stats that disappear after a few minutes. Within mess...
Hi, here is an example how to configure IP-NAT, GRE, IPSEC. I've seen plenty of questions and this might be a good solution! (Mostly the use of commands that might remind u) IP NAT======================================================================...
Hi everyone.I have a problem in my Network.So i have 3 routers and a firewall in my topology. I have configured OSPF and all routers works expect R3 (see in the image below)When I watch my neignbor in R3 it says :192.168.7.7 1 INIT/DROTHER 00:00:37 10.0.2...
Host Onboarding is the term used when connecting an endpoint (hosts , IOT , Other devices) to the fabric , and can be accomplished in a couple of ways.One option is the "static" approach as oppose to the dynamic and secure approach using&nbs...