RE: ip wccp redirect

From: David Prall (dcp@dcptech.com)
Date: Wed Nov 14 2007 - 19:52:51 ART

• Next message: shiran guez: "Re: auto-rp and default rp placement on IE workbook volume 1"
• Previous message: kang lee: "auto-rp and default rp placement on IE workbook volume 1"
• Maybe in reply to: Carlos Trujillo Jimenez: "ip wccp redirect"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Key issue you have with the Web Cache and users on the same interface is
that you will redirect traffic back out the same interface to the web cache.
The stuff you don't have cached will require that the web cache itself go
get it. It will be redirected back to itself, unless you exclude this
traffic. Your redirect in and redirect out configuration is for when you
have the web cache appliance doing spoofing. This requires that the web
cache is off of a dedicated interface, where you have the exclude command so
that all traffic entering the interface won't be redirected by the other
interface redirect commands. Since you are spoofing you can't simply
configure an ACL.

--
http://dcp.dcptech.com
  
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On 
> Behalf Of Derek Chan
> Sent: Wednesday, November 14, 2007 3:55 PM
> To: ccielab@groupstudy.com
> Subject: RE: ip wccp redirect
> 
> What about the traffic that is traveling via the router?  Let 
> say the router
> an Internet Border Router with one interface into the Internet and an
> interface with the Intranet.
> 
> PCs / Web CACHE <---> F0/0 |router| S0/0 <---> Internet
>                             S0/1
>                               |
>                               |
>                          Intranet
> 
> Should the configuration be something like this:
> 
> (Config)# IP WCCP WEB-CACHE
> (Config)# Interface FA0/0
> (config-if)# IP WCCP WEB-CACHE REDIRECT OUT
> (config-if)# Interface S0/0
> (config-if)# IP WCCP WEB-CACHE REDIRECT IN
> (config-if)# Interface S0/1
> (config-if)# IP WCCP WEB-CACHE REDIRECT IN
> 
> Isn't it true that the Web CACHE engine intercepts all the 
> web traffic from
> FA0/0 (I am assuming that the PCs and Web Cache Engine are in 
> the same LAN)
> thus making the inbound traffic redirection is unnecessary.
> 
> Here is another confusing part of the WCCP.  If the 
> redirection of WCCP is a
> specific interface command, why is there a need for the 
> command "IP WCCP
> REDIRCT EXCLUDE ?"  I just can't seem to get a definitive 
> answer from the
> Cisco documentation.
> http://www.cisco.com/en/US/products/ps6350/products_configurat
> ion_guide_chap
> ter09186a008030c778.html
> 
> Derek
> 
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On 
> Behalf Of
> shiran guez
> Sent: Tuesday, November 13, 2007 1:01 AM
> To: Carlos Trujillo Jimenez
> Cc: ccielab@groupstudy.com
> Subject: Re: ip wccp redirect
> 
> you need only Option A
> 
> interface FastEthernet0/0
> ip wccp web-cache redirect in
> 
> think on the direction of the traffic, if you doing a HTTP 
> GET from a PC
> behind a F0/0 then the traffic is cumming in with Dst port 80 
> and source
> random the web cache is intercepting your request and start 
> to cache it the
> second time another PC will try to GET he will send another 
> request with the
> GET to the same Destination and that is when the wccp server 
> will spoof the
> response and send him the file or page from the server.
> 
> 
> PC ---> F0/0 ROUTER S0/0 ------> WEB SERVER
>                     |
>                     |
>               WCCP SERVER
> On Nov 13, 2007 12:21 AM, Carlos Trujillo Jimenez 
> <nergal888@hotmail.com>
> wrote:
> 
> > Hi group.
> >
> > Lets suppose I have a router with a fastethernet0/0 
> interface, and there
> > are
> > hosts connected to its fastethernet 0/0 as well as a web 
> cache engine in
> > the
> > same lan segmente, I mean both the web cache engine and the host are
> > attached to the fastethernet0/0 interface.
> >
> > If I want to enable webcache redirect for all web 
> connections originated
> > in
> > that lan segment and send it out to the web cache engine 
> that is also
> > connected to the lan segment.
> > which of the following configurations are true??
> >
> >
> > OPTION A:
> >
> > interface FastEthernet0/0
> > ip wccp web-cache redirect in
> >
> >
> > OPTION B:
> >
> >
> > interface FastEthernet0/0
> > ip wccp web-cache redirect out
> > ip wccp web-cache redirect in
> >
> > Thanks group.
> >
> > _________________________________________________________________
> > MSN Amor: busca tu = naranja http://latam.msn.com/amor/
> >
> > 
> ______________________________________________________________
> _________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> 
> 
> 
> -- 
> Shiran Guez
> MCSE CCNP NCE1
> http://cciep3.blogspot.com
> http://www.linkedin.com/in/cciep3
> 
> ______________________________________________________________
> _________
> Subscription information may be found at: 
> http://www.groupstudy.com/list/CCIELab.html
> 
> ______________________________________________________________
> _________
> Subscription information may be found at: 
> http://www.groupstudy.com/list/CCIELab.html

• Next message: shiran guez: "Re: auto-rp and default rp placement on IE workbook volume 1"
• Previous message: kang lee: "auto-rp and default rp placement on IE workbook volume 1"
• Maybe in reply to: Carlos Trujillo Jimenez: "ip wccp redirect"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Dec 01 2007 - 06:37:29 ART