Cisco Support Community
Community Member

WAAS WCCP 6500 ACL Redirection

Hi All

      I'm sure I'm missing something simple here on a new install and I hope some one can point it out easily.  I implemented the following config which worked except it understandably broke connections as everything got redirected.  I'm running the WCCP config on a 6500 running 12.2(18) SXF

This config showed total redirected packets climbing sharply in a 'show ip wccp' on the 6500 but this config broke other things.


interface GigabitEthernet 1/0
ip address

ip default-gateway

wccp router-list 1

wccp tcp-promiscuous router-list-num 1 l2-redirect mask-assign


ip wccp 61
ip wccp 62

interface Vlan<vlans to be accelerated>

description Local VLAN to be accelerated
ip wccp 61 redirect in

interface Vlan <WAAS vlan>

description WAAS Devices(CM and WAE)
ip address

interface Vlan <
Vlan for WAN transit>
description Incoming WAN VLAN
ip wccp 62 redirect in

To try and limit redirection to just LAN space I swapped this:

ip wccp 61

ip wccp 62

for this:

Ip access-list ext WAAS_Inbound

  Permit ip

Ip access-l ext WAAS_Outbound

Permit ip

Ip wccp 62 redirect-list WAAS_Inbound

Ip wccp 61 redirect-list WAAS_Outbound

Once I did this, 'show ip wccp'  on the 6500 stopped showing redirected packets but did start showing packets being denied redirect.  Optimization stopped(according to the GUI) and I saw no hits on the access-lists(should I?).

Thanks for your help in advance.

Cisco Employee

Re: WAAS WCCP 6500 ACL Redirection

A fews questions/comments:

  • What type of Supervisor are you using?
  • What is the exact version of software you are using?
  • The fact that the 'packets redirected' counter is incrementing is a bad thing on the 6500.  It means that the redirection is happening in software.

Can you also provide the output from the following commands:

  • sh ip wccp
  • sh ip wccp 61 det
  • sh ip wccp 62 det



Community Member

Re: WAAS WCCP 6500 ACL Redirection

I changed the redirect access-lists from "permit ip " to "permit ip any" and this seems to have fixed the problem.  Thanks for the input

Cisco Employee

Re: WAAS WCCP 6500 ACL Redirection

It shouldn't have made a difference, unless you were running into some bug or limitation.  If you'd like to troubleshoot further, let me know.



CreatePlease to create content