I am trying to get WCCP working on the ASA for WAAS implementation. Here is a simple snapshot of my config:
Eth 0/0 : Outside (to internet)
Eth 0/1 : Vlan1 (126.96.36.199/16) (trunk port to remote office LAN)
Eth 0/1.211 : Vlan211 (188.8.131.52/24)
Eth 0/1.212 : Vlan212 (184.108.40.206/24)
Eth 0/1.220 : Vlan220 (220.127.116.11/16)
Eth 0/2 : WAAS (18.104.22.168/24)
I have the site to site tunnel working. I can ping the WAAS device from the other end of the tunnel but I cannot ping it from the 22.214.171.124/16 network. I have enabled traffic between interfaces on same security level as WAAS and LAN have same security.
I get this error message:
3 Feb 12 2007 17:54:05 305006 126.96.36.199 portmap translation creation failed for icmp src WAAS:188.8.131.52 dst LAN:184.108.40.206 (type 8, code 0)
How can I fix this?
My second question is regarding WCCP on ASA. Here is the WCCP part of the config I have:
wccp 61 redirect-list WCCP_To_LAN
wccp 62 redirect-list WCCP_To_WAN
wccp interface outside 62 redirect in
wccp interface LAN 61 redirect in
access-list WCCP_To_LAN extended permit ip any 220.127.116.11 255.252.0.0
access-list WCCP_To_WAN extended permit ip 18.104.22.168 255.252.0.0 any
I am not seeing any packets being redirected to the WAE. I once changed the access lists to 'any any' and I saw some packets but I couldn't ping or telnet to the remote site. Could it be a loop? Is there any way to exclude traffic to avoid loop?