cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1142
Views
0
Helpful
2
Replies

Troubleshoot WCCP Layer 3 Between Cisco Cat6K and Cisco IronPort

Hi Everyone

I need help on this. I have LAN users that connect to my Core Switch i.e. Cat6500. In this Core Switch, I've configured WCCP. The Cisco IronPort is situated few hops away. However, LAN users cannot browse the Internet. Based on the troubleshooting done, the Core Switch i.e. Cat6500 is able to detect the  Cisco IronPort, but in L2 mode, which is not correct.

HQ-L13-C6506-01#show ip wccp 91 detail
WCCP Cache-Engine information:
        Web Cache ID:          172.20.87.30
        Protocol Version:      2.0
        State:                 NOT Usable
        Redirection:           L2
        Packet Return:         L2
        Packets Redirected:    0
        Connect Time:          00:00:13
        Assignment:            MASK

ip wccp 91 redirect-list 110


interface Vlan14
ip address 10.10.6.10 255.255.255.0
ip helper-address 10.5.32.122
ip wccp 91 redirect in

access-list 110 permit tcp any any eq www
access-list 110 permit tcp any any eq 443

Where is the problem?

Regards,

Ram

Warm regards,
Ramraj Sivagnanam Sivajanam
2 Replies 2

Chris Illsley
Level 3
Level 3

Hi, from someone elses answer, you need to configure the egress method:

09-Sep-2009 21:40                             (in response to gwhuang5398)

Re: How to configure WAAS WCCP if Layer 3 link between router and switch

You will  want to review 'egress-method negotiated-return intercept-method wccp'.   This will return all traffic to the router in a WCCP GRE tunnel.

(config) egress-method

http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v413/command/reference/glob_cfg.html#wp1241244

Configure  the WAE with an IP address that is appropriate for the Switch L3  segment and use the Switch L3 interface as the default gateway.

Configure  WCCP to use GRE/GRE/HASH with egress-method GRE.  GRE is cpu intensive  on the router so this solution may have scalability issues.

Cheers

Chris

kussriva
Level 1
Level 1

Hi,

The command "egress-method negotiated-return intercept-method wccp"

CLI command changes the default EMIC from IP forwarding to negotiated return. So please add this command to the configuration.

Also please refer to the WCCP integration with Cat 65K Best Practices at

http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps708/white_paper_c11-629052.html for more information about different deployment methods.

Regards,

Kush

Cisco PDI Helpdesk

http://www.cisco.com/go/pdihelpdesk

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: