Solved

Cisco ASA 5510 WCCP config

Posted on 2013-11-15
2
318 Views
Last Modified: 2016-02-25
We've got WCCP enabled on our ASA route which is used by a Sophos web appliance.  

access-list wccp-server extended permit ip host 192.168.0.121 any
access-list wccp-traffic extended deny ip 192.168.0.0 255.255.255.0 209.223.80.0 255.255.255.0
access-list wccp-traffic extended permit ip 192.168.0.0 255.255.255.0 any

wccp web-cache redirect-list wccp-traffic group-list wccp-server
wccp 70 redirect-list wccp-traffic group-list wccp-server
wccp interface inside web-cache redirect in
wccp interface inside 70 redirect in

I've got a wireless network on 10.0.0.0/8 that I've got a guest network setup on that I'd like to bypass the WCCP.  Can anyone help with this config?
0
Comment
Question by:tbeasley123
2 Comments
 
LVL 12

Accepted Solution

by:
Henk van Achterberg earned 250 total points
ID: 39675541
access-list wccp-traffic extended permit ip 10.0.0.0 255.0.0.0 any

wccp interface wifi web-cache redirect in
wccp interface wifi 70 redirect in
0
 
LVL 8

Assisted Solution

by:amatson78
amatson78 earned 250 total points
ID: 39795717
If you want it to "BYPASS" redirection than you want to use a "Deny" statement not a permit as stated above. If the 10.0.0.0/8 network is on the same interface then you need to edit that set of access rules:

# config t
# access-list wccp-traffic extended line 2 ip 10.0.0.0 255.0.0.0 any <options>

Open in new window


This will insert the deny into line 2 of the access list and move the rest down placing it above any of the "Permit" statements which is how an ACL should properly be built.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If I have to fix slow responding website my first thoughts are server side optimizations: the database may not be optimized or caching is not enabled, or things like that. We often overlook another major part of our web application: the client. We o…
Developer tools in browsers have been around for a while, yet they are still heavily underused by developers. Developers still fix html or CSS then refresh page to see effect, or they put alert or debugger in JavaScript and then try again and again …
This video teaches viewers how to create their own website using cPanel and Wordpress. Tutorial walks users through how to set up their own domain name from tools like Domain Registrar, Hosting Account, and Wordpress. More specifically, the order in…
Wufoo.com provides powerful tools for surveying targeted groups, and utilizing data from completed surveys to find trends, discover areas of demand or customer expectation, and make business decisions on products or services.

948 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now