[GTER] WCCP + Ironport

Fabio Luiz fabiosk at gmail.com
Wed Oct 24 18:23:30 -02 2012


Devido a isso eu não estou conseguindo trafegar com Proxy na rede wireless,
alguem tem alguma dica dq estou fazendo errado.

2012/10/24 Fabio Luiz <fabiosk at gmail.com>

> Amigos,
>
> Estou com um problema na criação de uma regra de WCCP para integrar meu
> ASA ao meu Ironport.
> Tenho o seguinte topologia:
>
> (Notebook/ Dispositivos Moveis) - > *[SSID - Guest]* -> AP -> Controller
> -> *[DHCP Server(172.20.5.0/24)]* -> *[172.20.5.1]* ASA *[192.168.0.1]*->
> *[Rede Interna - 192.168.0.0/24]* -> Ironport[192.168.0.9]
>
> Configuração WCCP no ASA
> access-list Rede_WCCP extended permit tcp object Rede_Guest any eq www
> access-list Rede_WCCP_Cache extended permit object-group
> DM_INLINE_SERVICE_8 object Rede_Guest any
> access-list Rede_WCCP_Cache extended permit tcp any eq www object
> Rede_Guest inactive
> wccp web-cache redirect-list Rede_WCCP group-list Rede_WCCP password *****
> wccp 90 redirect-list Rede_WCCP_Cache group-list Rede_WCCP_Cache password
> *****
> wccp interface Guest web-cache redirect in
> wccp interface Guest 90 redirect in
>
> No Ironport eu configurei da seguinte maneira:
> Type: WCCPv2
> Service Profile Name: HTTPS
> Service: Dynamic service ID: 90
>              Port numbers: 443
> Router IP Addresses: 172.20.5.1
> Router Security: Enable Security for Service
>                Password: xxxxxx
>
> Service Profile Name: HTTP
> Service: Standard service ID: 0 web-cache (destination port 80)
> Router IP Addresses: 172.20.5.1
> Router Security: Enable Security for Service
>                Password: xxxxxx
>
> E no status do serviço no ASA Venho recebendo o seguinte erro:
> Global WCCP information:
>     Router information:
>     Router Identifier:                   -not yet determined-
>     Protocol Version:                    2.0
>
>     Service Identifier: web-cache
>     Number of Cache Engines:             0
>     Number of routers:                   0
>     Total Packets Redirected:            0
>     Redirect access-list:                Rede_WCCP
>     Total Connections Denied Redirect:   0
>     Total Packets Unassigned:            0
>     Group access-list:                   Rede_WCCP
>     Total Messages Denied to Group:      1183
>     Total Authentication failures:       0
>     Total Bypassed Packets Received:     0
>
>     Service Identifier: 90
>     Number of Cache Engines:             0
>     Number of routers:                   0
>     Total Packets Redirected:            0
>     Redirect access-list:                Rede_WCCP_Cache
>     Total Connections Denied Redirect:   0
>     Total Packets Unassigned:            0
>     Group access-list:                   Rede_WCCP_Cache
>     Total Messages Denied to Group:      10230
>     Total Authentication failures:       0
>     Total Bypassed Packets Received:     0
>
> Agradeço a atenção de todos.
>
> --
> Atenciosamente
>
> Fabio Silva
> LPIC-1 | Novell CLA 11 | Novell DCTS | TrendMicro CSE
>
>


-- 
Atenciosamente

Fabio Silva
LPIC-1 | Novell CLA 11 | Novell DCTS | TrendMicro CSE



More information about the gter mailing list