Nexus 7000 wccp issue

opnineopnine · ‎01-20-2016

Hello

I have configured my nexus 7000 with wccp.

IP access list WCCP_Test
10 permit ip 10.10.150.0/24 any ---< my network

!

IP access list WCCP_INT_BC_1

10 permit ip 10.99.225.37 ---< bluecoat

!

sh run | i wccp
feature wccp
ip wccp web-cache redirect-list WCCP_Test
ip wccp 100 redirect-list WCCP
ip wccp web-cache redirect in
ip wccp 100 redirect in

sh run int vlan 9

ip address 10.10.150.0\24

ip wccp web-cache redirect in
ip wccp 100 redirect in

how ip wccp 100 detail
WCCP Client information:

    WCCP Client ID:          10.99.225.37
    Protocol Version:        2.0
    State:                   Not Usable (Negotiating)
    Redirection:             L2
    Packet Return:           L2
    Connect Time:            00:30:33
    Assignment:              MASK

Any ideas? thanks !!!

Philip D'Ath · ‎01-20-2016

I'm not familiar with Nexus, but how about something more like:

access-list 100
  deny ip any host 10.99.225.37
  deny ip host 10.99.225.37 any
  permit ip any any
  exit
ip wccp web-cache redirect-list 100

interface vlan9
  ip wccp web-cache redirect in

opnineopnine · ‎01-20-2016

Hello,

I should, I deny the 10.99.225.37?

Thanks.

Philip D'Ath · ‎01-20-2016

Yes. We don't want traffic to or from the bluecoat to be redirected.

opnineopnine · ‎01-21-2016

I will try this and let you know how it went.

thanks!

Jon Marshall · ‎01-20-2016

You need to enable WCCP debugging because from your output it shows that the Nexus is saying the client is "Not Usable (Negotiating)" which suggests you may have connection issues between your switch and the proxy server.

Jon