I have a customer who is deploying waas on their wan links. They currently have their serial interfaces configured to encrypt traffic in IPSEC tunnels from the client networks at each site into the home office location. Here is an example configuration:
interface Serial0/0/0.1 point-to-point
ip address x.x.0.2 255.255.255.252
no ip redirects
no ip unreachables
no cdp enable
frame-relay interface-dlci 701 IETF
crypto map combined
The WAE is attached to a seperate subnet via a 4ESW. I am using WCCPv2 redirection to redirect traffic on the client network and the serial interface to the WAE.
my wccp return method is ip forwarding.
When we enabled redirection yesterday all tcp based traffic was broken. Is the problem with the crytpo map being applied to the interface? Does wccp redirect the actual IPSEC packet before decapsulating it?