Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Transparent Deployment Using Layer 4 Switch


Just want to ask how to deploy WSA Ironport on transparent mode on layer 4 Switch.

I believe it is just deployed by choosing Layer 4 on Transparent Redirection on WSA Ironport.

But the question is, what will I need to configure to my Layer 4 switch for it to redirect traffic to WSA?

I'm trying to connect it to a hp procurve layer 4 switch to use transparent redirection.

Can someone clarify how to deploy it?



Transparent Deployment Using Layer 4 Switch

Make sure your swtich can do it:

I did some digging and didn't find any decent docs on setting it up... but if you take your drawing from the L4TM question you posted, you want to set up a policy that for the "security vlan" so that all IP traffic on the web ports you want to monitor (80, 443, plus others you might want) gets sent to the IP of the WSAProxy

Here's a bit I lifted from a post on HP's site:​upportManual/c03015541/c03015541.pdf

You'll want to have a look through Chapter 8 for the configuration. You've got to basically configure a traffic class, configure policies for it, and then apply it (in this case) to each of the VLANs you want it for.

What kind of firewall are you using?  If its a Cisco ASA, it would actually be simpler to do WCCP to the WSA...

New Member

Transparent Deployment Using Layer 4 Switch

Thanks for the Reply,

The firewall that I'm using does not support WCCP.

That is why I'm considering the Layer 4 Redirection.