Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
622
Views
0
Helpful
2
Replies

WCCP blocking all ports

dmoorefnlc
Level 1
Level 1

‎08-30-2006 09:25 AM

Weird one, bluecoat mach5 with 6509 with 12.2(18)SXF2 ios code. for some unknown reason WCCP started blocking all ports to server that was in my access-list

deny ip 10.122.50.0 0.0.1.255 any

deny ip 10.122.40.0 0.0.1.255 10.120.50.0 0.0.1.255

permit ip host 10.122.41.240 any

permit ip host 10.120.41.240 any

only directing wccp between two hosts, all other traffice on this vlan40 is dropped.

the second I put the wccp "in" onto the vlan40 interface, rdp, web, were dropped. I am not re-directing those ports on the bluecoat. if request to rdp into 10.122.41.240 came from local subnet, RDP was allowed. outside that subnet or outside that IP range denied.

Anybody seen something weird like this happen with wccp? I am using wccp service groups, not port 80/8080 redirect. Bluecoat determines what ports are being re-directed. mach5 is a WAFS product.

Also, is there more than 3 or 4 documents on the cisco site about WCCP? I have 4 docs about implementing wccp and that is all I could find.

Labels:
0 Helpful
2 Replies 2

sbilgi
Level 5
Level 5

‎09-05-2006 11:35 AM

See the under-mentioned URL. It indicates those ports and protocols that are not to be filtered:-

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s11/12s_wccp.htm#xtocid16540

0 Helpful

dmoorefnlc
Level 1
Level 1
In response to sbilgi

‎09-05-2006 01:53 PM

thanks for the reply. Issue was I needed to define the WCCP ports on the Bluecoat Mach5 in the WCCP config. BC support said this wasn't necessary, but it is.

0 Helpful
Customers Also Viewed These Support Documents