Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
743
Views
5
Helpful
4
Replies

WAAS with HSRP drops connections

bradley.ford
Level 1
Level 1

‎01-23-2008 07:27 PM

Hi, I'm trying to implement a WAAS topology with two WAE 512's and two WAN routers at the core and 2811 with a 512 module at the tail sites. The core routers are running mHSRP and each WAE uses a different HSRP virtual IP as their default GW. The problem i'm getting is TCP connections do not establish when the connection is made to the WAE who's default GW isn't the source of the connection. Any ideas, could I be hitting CSCsk47177 (i'm running 4.0.13 on the WAE's).

Thanks Brad.

Labels:
0 Helpful
4 Replies 4

muali
Cisco Employee
Cisco Employee

‎01-23-2008 11:03 PM

Your problem description is not very clear, can you elaborate a little. CSCsk47177 applies to inline deployments only, are you using pbr or wccp for interception. If using wccp, I would start with the interception and verify that packets are first getting to the WAE. You can check "show tfo conn summ".

0 Helpful

bradley.ford
Level 1
Level 1
In response to muali

‎01-24-2008 01:56 PM

I'm using wccp for interception and have the wae and hsrp routers in the same vlan. The wae's have the hsrp routers interface ip address in their route list and are using the hsrp virtual ip's as their default gateway. Their are two hsrp groups, hsrp_r1 is the active for group 1 and hsrp_r2 is active for group 2. Wae1 uses group 1 as the default gateway and wae2 uses group 2 as the default gateway. The hsrp routers have two sub interfaces, one for the wae's vlan and one for the lan network. The wae vlan has "ip wccp redirect exclude in" configured and the lan vlan has "ip wccp 61 redirect in" and "ip wccp 62 redirect out" configured. Interception works fine for packets between the tailsite-wae and wae1 if they are received from hsrp_r1 but not hsrp_r2 and vise versa but not if the packet come from a router other than the wae's default gateway.

wae1--|--hsrp_r1--[sp_cloud]--\_tailsite-wae

wae2--|--hsrp_r2--[sp_cloud]--/

0 Helpful

cfolkerts
Level 1
Level 1

‎01-24-2008 12:04 PM

This is just a guess, but when configuring the WAEs for interception with HSRP enabled routers please remember to configure the actual IP addresses in the WAE router-list and the virtual ip address as the default gateway.

When you configure WCCP for use with Hot Standby Router Protocol (HSRP), you must configure the WAE with the HSRP or the Virtual Router Redundancy Protocol (VRRP) virtual router address as its default gateway, and the WAE WCCP router-list with the primary address of the routers in the HSRP group.

Regards

0 Helpful

bradley.ford
Level 1
Level 1
In response to cfolkerts

‎01-24-2008 04:48 PM

I found the problem, needed to configure the egress method for WCCP GRE

"egress-method negotiated-return intercept-method wccp"

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents