Hello IronPort Expert,
I ran into a problem and hope someone can give me idea how to workaround on this.
Between the HQ ASA and remote office ASA, a vpn is setup but remote internet traffic does not get inspect by HQ IronPort.
Is there a way to do this? Here is the detail:
A layer 2 link between HQ and remote office for site to site vpn. HQ and Remote ASA has a dedicate interface to setup this vpn on this layer 2 link.
VPN is working fine but when the remote internet traffic is browsing through HQ does not get inspect by IronPort.
HQ IronPort is configured as transparent. The internet traffic from remote leave remote ASA and arrive to HQ ASA then immediately travel to the outside interface of HQ ASA for internet. Can this internet traffic being redirect to IronPort before go out to internet? On HQ ASA has wccp setup with redirect to the inside interface, it was also added another wccp to redirect on the vpn interface of HQ ASA and when test, got response the web page cannot be display. Here is the wccp setup on HQ ASA:
wccp 90 redirect-list IRONPORT_HTTP
wccp interface inside 90 redirect in
wccp interface toMTL 90 redirect in -- removed for internet working (the toMTL interface is for vpn to remote office)