Glad to hear it worked. Can

CSCO11942440 · ‎06-09-2016

Dear all

I would like to test a WCCP and WSA feautre. You can see my topology below.

Transparent redirection for HTTP(80) works as charm, but I have problem which HTTPS(443)

Explicite services works normaly.

When I check show ip wccp 90 detail I see counter for Redirected Packets grow up when I am trying HTTPS from host.

WCCP Client information:
WCCP Client ID: 10.10.0.2
Protocol Version: 2.01
State: Usable
Redirection: L2
Packet Return: L2
Assignment: MASK
Connect Time: 01:18:51
Redirected Packets:
Process: 0
CEF: 0
Platform: 3958
GRE Bypassed Packets:
Process: 0
CEF: 0
Mask Allotment: 32 of 32 (100.00%)
Assigned masks/values: 1/32

Configuration for WCCP on CSR

ip wccp source-interface GigabitEthernet1
ip wccp 90 redirect-list 110

interface gi 1
ip wccp 90 redirect in

Extended IP access list 110
10 permit tcp 10.30.0.0 0.0.0.255 any eq www
20 permit tcp 10.30.0.0 0.0.0.255 any eq 443

WSA

I setup L2 forwarding/return method, I checked it for gre alsow.

Tao Yang · ‎06-09-2016

Have you had HTTPs proxy enabled in WSA GUI>Security Services?

CSCO11942440 · ‎06-11-2016

Tao

Yep it works now...

I have a additional question. When configure NAT and WCCP it not works..Do you have some tips for this ?

Tao Yang · ‎06-12-2016

Glad to hear it worked. Can you please be more specific about NAT and what exactly is not working as expected? If WSA somehow could not know the real source IP, then it will not be able to response the client properly.

HTTPS redirection does not work for WCCP and WSA