Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
723
Views
0
Helpful
2
Replies

L2 Redirect and Redirect Lists

Go to solution
wrobbin
Level 1
Level 1

‎09-22-2010 10:12 AM

Recently we changed  how we did redirection from out branches to our datacenter

Before we did GRE-GRE Hash at the head end and the Same GRE -GRE and the branch end. We controlled what traffic was allowed to be rediretced by redirect list that pointed back to ACLs.

Now we have our Head end WAEs doing L2/L2 Mask with our 6509 instead of GRE-GRE. I looked at my ACLS today a realized that they are no longer getting any "hits" which make sense IP ACLs are layer 3 and L2 redirection is L2. How do i control which traffic will be redirected?

Reason im asking is we ahve stood up a New Host Agg section and i wanted the throw a WAAS in there but i fear is there will be servers from Old Server Farm talking to Hosts in new HostAgg and the traffic will be redirected which i dont want since the WAAS has a 2 G connection(port channel ) and all my connections to alot of servers and between host agg and core are all 10G plus....

How do i control which traffic will be redirected?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Zach Seils
Level 7
Level 7

‎09-22-2010 10:54 AM

The redirect list is still being applied.  The issue on the 6500 platform is the Assignment Method used with WCCP.  Hash Assignment is handled (partially) in software, while Mask Assignment is handled in hardware.  The redirect list ACL counters are only going to show hits for packets that are redirected in software.  When all of the redirection is occuring in hardware, the counters won't increment.  In fact, on the 6500, you don't want to see the counters increment, since that indicates sub-optimal redirection performance.

To see if redirection is occuring on the 6500, you can use the command:

show tcam interface acl in ip

where is one of the interfaces where you have WCCP redirection applied.

Regards,

Zach

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Zach Seils
Level 7
Level 7

‎09-22-2010 10:54 AM

The redirect list is still being applied.  The issue on the 6500 platform is the Assignment Method used with WCCP.  Hash Assignment is handled (partially) in software, while Mask Assignment is handled in hardware.  The redirect list ACL counters are only going to show hits for packets that are redirected in software.  When all of the redirection is occuring in hardware, the counters won't increment.  In fact, on the 6500, you don't want to see the counters increment, since that indicates sub-optimal redirection performance.

To see if redirection is occuring on the 6500, you can use the command:

show tcam interface acl in ip

where is one of the interfaces where you have WCCP redirection applied.

Regards,

Zach

0 Helpful

Go to solution
wrobbin
Level 1
Level 1
In response to Zach Seils

‎09-22-2010 11:01 AM

Thank you Zach your are correct i see the " policy-route tcp "..BTW just started  reading your book...so far been really helpful

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents