Configuring WCCP for http and https

Unanswered Question
Feb 22nd, 2008

How do I configure wccp on a 6509 to redirect http and https trafic to a S650. I am using the following config and http is working fine:

ip wccp version 2
ip wccp web-cache redirect-list aclwccp

interface Vlan23
description Rede Firewall
ip address
ip access-group 172 out
ip wccp web-cache redirect out
mls rp vtp-domain coc_block1
mls rp ip
mls netflow sampling

Should I config an other service for the https protocol?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jowolfer Mon, 02/25/2008 - 15:43


The WSA can be configured to send 80 and 443 traffic, in the WCCP settings area (5.2.0+). There are some things you will need to be aware of before doing this though:

1. If you are on 5.2.0-x, you will not be able to inspect HTTPS traffic. Only version 5.5.0+ has the ability to decrypt HTTPS traffic. Because of this, it is not recommended to redirect port 443 on WSA version 5.2.

2. You will most likely need to specify a service ID other then web-cache. On most Cisco devices, web-cache is reserved for port 80 traffic only and cannot be changed. Any other service ID will work as you want it to.


This Discussion