cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
810
Views
0
Helpful
0
Replies

WCCP and ASA

erga
Level 1
Level 1

We use Mcafee Web Gateway and use wccp to redirect 80 and 443 traffic. Wccp is configured in our core, its a Layer2 rewrite.

 

I am looking to move this config to the ASA. We don't modify the redirection list during work hours, because one time this caused switch reboot. And we are limited on the number of deny statement the ACL can have since this can cause high CPU 

 

After configuring wccp in the ASA,  I noticed that the router ID is the highest IP configured in the ASA and in my case it happens to be the outside interface. This looks like a major design flaw that I'm not able to select the participating interface since this is the interface that will establish the GRE tunnel with the gateway.

After configuring it the redirection is working, but I don't see the GRE tunnel that is used to forward packets. 

How do I verify that this tunnel is established except for having a user to test with. 

 

TIA

0 Replies 0