cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
993
Views
0
Helpful
3
Replies

WCCP not redirecting users traffic from other subnets

isaqellari
Beginner
Beginner

Hello,

I have configured WCCP redirection on ASA for redirecting transparently http and https traffic.

I have configured a service ID 90 that contains 80 and 443 port. The ironport S160 has two interfaces, one for management and the other for data.

The interface used for data is on a different subnet that the inside interface of ASA where it is configured WCCP.

The problem is that the users that are in the same subnet with ironport data interface, their traffic gets redirected, while the traffic of the other users that are not in the same subnet with ironport data interface is not processed correctly from ironport and this users does not have internet access.

Any idea ?

BR,

Ilir

3 Replies 3

Ken Stieers
VIP Advisor VIP Advisor
VIP Advisor

Ilir,

How is this second group of users connected to the ASA?  Their outbound traffic has to be going out the "inside" interface also. If they are on another port on the ASA, WCCP won't catch their traffic. i.e. You can't use the DMZ interface on an ASA and point its web traffic at a WSA that lives inside.

Ken

Hello Ken,

Thank you for your reply first.

Yes, also the other users subnets have to be going out the inside interface also.

BR,

Ilir

Is the new subnet in the redirect ACL that WCCP is using?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers