Cisco :: WCCP Not Working With McAfee Web Gateway?
Oct 31, 2012
I'm using a Cisco AG3560 to run my wccp re-direct and have a McAfee for my web gateway. My IP for the web gateway is 10.1.252.19, and my wccp router is 10.1.3.10. For whatever reason the web gateway is able to see the router and the "here i am packets" but I cannot get anything to redirect to it. My wccp config is below.
ip wccp 51 redirect-list 120
!
interface Loopback0
ip address 10.1.254.17 255.255.255.255
[code]...
I have the Web Gatewy setup with process 51 and my router on the WG is 10.1.252.10.
View 1 Replies
ADVERTISEMENT
Sep 6, 2012
Few days ago the wireless in my son's Dell Inspiron 620 went bad. It does connect to my old router (WEP), but speed is terrible and connection goes bad after some time. I can also see my modern router and enter the key successfully (WPA2), but it won't connect. Connection to both routers went well for months before, and still goes well from all other devices in the house.
I read the issue with McAfee that was posted late August and followed the steps. Connection in safe mode didn't work. Then I removed McAfee from the PC, no difference. Then I restored the PC to a couple of days before the issues began, removed McAfee again (as it came back through the restore), no difference.
I reinstalled the drivers of the Dell wireless card, no difference.
View 6 Replies
View Related
Jul 26, 2012
I'm testing WCCP in a lab environment (Another checkbox on my way to CCIE).The setup- a WS-C3560-8PC switch running IOS 15.0(1), IP Services with crypto.- Two client computers connected by wire to the switch, running Windows 7.- A virtual machine in bridged mode running on one of the machines, running OpenBSD 5.0 with Squid 2.7 installed and running.- Everything in the same subnet: 192.168.163.0/24, the OpenBSD is at .5, the switch at .3 and functions as the default-gateway for the computers with no ICMP redirects (the real gateway is at .1 but the switch forwards everything).Squid seems to work, albeit inefficient, but that's not the issue.illing in the IP of the OpenBSD in the browser as proxy with the proper port works.Since the 3560 does only support WCCP over layer 2 adjacencies and masks, not hash buckets, I've configured these options on both the Squid and the 3560.
View 19 Replies
View Related
Jun 17, 2012
I am trying to configure a 3560 (Version 12.2(55)SE3) with IPServices to run WCCP to two to an Ironport WSA.
I believe everything is setup correctly, however WCCP is still not operational. I have check the debug logs on the switch and I'm presented with a number of messages along the lines of...
*Mar 1 03:44:47.891: WCCP-EVNT:wccp_update_assignment_status: enter
*Mar 1 03:44:47.891: WCCP-EVNT:wccp_update_assignment_status: exit
*Mar 1 03:44:47.891: WCCP-EVNT:wccp_copy_wc_assignment_data: enter
[Code]....
View 7 Replies
View Related
Jul 10, 2012
Is there any way to provide QoS using Cisco Routers and switches and MCafee FW? ( I don't mind the model of the devices, I just need to know if there's a posibility).
View 5 Replies
View Related
Jan 3, 2012
I'm having an issue with McAfee Antivirus remediation. I'm using Cisco NAC 4.8.2 and it seems that automatic remediation is not working.Is there a webpage where we can check which AV can do automatic remediation?
View 1 Replies
View Related
Jan 10, 2012
Issue with my Gateway to Gateway VPN connection. I have outlined the settings for both sites and I feel I should mention that this was an established connection that was working until I came in this morning. Nothing has changed (as far as I know) but for some reason I am not able to reconnect. Can you see any reason why this would be? Of course I've changed the WAN IPs and Shared Key for security purposes.
View 2 Replies
View Related
Dec 6, 2011
I have 3 computers on my network. The main computer is protected by mcafee. The other computers can not access the public folder on this computer. I know that the problem is the mcafee firewall because when i switch the firewall off the other computers have full access to this folder. This problem started with a mcafee upgrade. I want to keep the mcafee firewall,
View 1 Replies
View Related
Nov 30, 2012
My Laptop stopped having internet access. I am able to connect to my Linksys (says Limited Access) but then it states I do not have internet access. I read other forums and tried to do the "command prompt" but when I try to run as administrator it tells me "The specified service does not exist as an installed service". I am using Windows Vista and McAfee as my spyware.
[code]....
View 11 Replies
View Related
Feb 19, 2011
I am trying to connect a Wii wirelessly to a Linksys router. I keep getting an error code of 53132. Every site I've checked has said that 192.168.1.1 should be the IP used to put into the web address bar and be able to access the settings. Well, it does not work. "Cannot find server" is all I get. I used some suggestions that I found on this forum, and I tried pinging the number, and it times out 4 times. I even reset the router. I have used the numbers for the IP address as written below to try accessing the site as well, and no luck. No number works by placing it after http:// on the browser.Here is the specifics;When I use ipconfig, I get "Ethernet adapter local area connection" "connection-specific DNS Suffix" "Link-local IPv6 Address" (which is approx. 28 characters long-not retyping unless necessary) "IPv4 Address" (which is 24.3.224.140), Default gateway (24.3.224.1); then Tunnel adapter local area connection* 6:
Media state: Media disconnected"
"Connection-specifix DNS Suffix:"
And Tunnel adapter local area connection* 7:
Media state: Media disconnected"
"Connection-specific DNS Suffix:" (which is blank)
[code]...
View 2 Replies
View Related
Mar 19, 2011
So here is what happened, it started two days ago. I use a wifi connection at work, it's an unsecure wifi and I don't know where it comes from. But I am able to get on here at work and do stuff... two days ago I tried and it let me on like normal, but then I couldn't get on websites, it said local access only... so I was like mmm that's odd and the little CD looking thing wasn't there it was just two computers on the bottom right hand corner of the screen. So I restarted after attempting a few times... same problem, finally after a while it let me online but it was very slow and kept kicking me off. When I would try to reconnect sometimes it wouldn't let me and it would give me the option to diagnose the problem or try a new network, I'd move around and finally get on.
I restored back to a day when it was working fine, I did a disc clean up, I used my CCleaner, I defragged my laptop. Still the same problem, my laptop is a Gateway computer running on Windows Vista... so today at first my wifi wouldn't work unless I was standing and holding it... which I found the higher in the air the better it stays connected it seems sometimes.I chatted with gateway and they gave me a few links to download which failed to download once they got to like 30% or so, so I am all out of options I downloaded the wifi link here Download free driver for notebook Gateway ML3109 (Windows 7, XP, Vista) - DriverPack Solutio since that is my laptop
View 2 Replies
View Related
Feb 12, 2012
Turned up a new colo service last week using some PIX 515E firewalls and two Cat 2950 series switches. I have attached a diagram of the layout which I have used elsewhere with good success. Basically I have two switches connected together via port channel (2 ports). The colo facility gives me two HSRP enabled links, of which I plug one into switch A and the other in switch B. The PIxes are a failover pair with the primary plugged into the same switch A as the primary HSRP link.The backup PIX is plugged into the backup switch where the backup HSRP link is. When I unplug the primary HSRP link the PIX can ping the HSRP gateway still, but nothing beyond that. Nothing gets it to work until I plug the link back in.
The only thing I could see that might cause an issue is the 'ip verify reverse-path' command on the PIXes. But even the switches cannot ping out beyond the HSRP gateway. Just seems like all inbound routing stops. I am not sure what the colo facility has going on their side but it seems like they are using just some Cisco 6509s and doing HSRP between them. Seems pretty simple but so far this is proving un-usable as is.
The PIX BTW just uses a default route to the HSRP gateway.
View 3 Replies
View Related
May 14, 2012
I am trying to learn more about networking and system administration. I am practicing allot on VMs i am running here at home. I am not sure if it is allow to ask beginners questions on this site but i will try my luck anyway.
View 2 Replies
View Related
Aug 7, 2011
I have an old Gateway W322 laptop running Windows XP Home Edition and it recently stopped being able to connect to the internet. It happened gradually, at first having connection problems off and on for a few hours, and eventually it would no longer connect at all. I tried using an ethernet cable to the modem and that didn't work. I also know it's not my modem because I have other computers in my house and they are connecting just fine.
View 7 Replies
View Related
Sep 20, 2011
We have a several WAP610N Access points in our company since a few months and immediately noticed that it has problems with the gateway when you set it to use a static IP. (the AP loses its gateway when you pull the power). Today I saw that there was a firmware update, and in the firmware release notes it stated that the problem with the missing gateway info on the status screen was solved.
This info is correct. After updating to 1.0.0.2 the gateway is shown in the status screen when you use a static IP, but the actual function of the gateway is still not working after restarting the AP! I already let our reseller create a support call with Linksys a few months ago, but in the end they told me this would probably not be fixed and that I had to use DHCP.
View 2 Replies
View Related
Jun 2, 2011
In change network topology, we are going to assign PC's Gateway as Switch (3750X) IP Address rather than server IP Address. Currently we have configured all Sytems's Gateway is Internet Server IP Address which we are going to replace with Switch IP as Gateway.Issue is while connecting specific application like team viewer in which application tried to send keepalive message to the live server and in case of switch/router IP as gateway. Connection doesn't established. However it is working fine when Internet Server IP treated as gateway.
View 1 Replies
View Related
Oct 7, 2012
Wireless is working on one laptop but not the other. Default gateway not showing when running command prompt, ipconfig /all
View 5 Replies
View Related
Jun 28, 2011
We had a storm the power went out when the power came back and I started my computer I had no internet. It is a gateway desktop MFATXPNT YKT 500X bought in 2003. I have tried loading drivers no luck and I have tried a usb ethernet adapter in which the computer says it can't load the drivers.
View 1 Replies
View Related
Nov 12, 2012
In change network topology, we are going to assign PC's Gateway as Switch (3750X) IP Address rather than server IP Address. Currently we have configured all Sytems's Gateway is Internet Server IP Address which we are going to replace with Switch IP as Gateway. [code]
Issue is while connecting specific application like team viewer in which application tried to send keep alive message to the live server and in case of switch/router IP as gateway. Connection doesn't established. However it is working fine when Internet Server IP treated as gateway.
View 33 Replies
View Related
Jul 22, 2012
I've got a Gateway 2wire 3800 HGV-B router which works fine wirelessly, but when using an ethernet cable to connect to the internet, it doesn't even recognize the computer. My laptop runs wirelessly all the time, and I recently picked up a desktop PC for home here, and it's the first wired connection I'm using, but for some reason the wired connection isn't connecting to my network, but instead it's own Unidentified Network.
View 2 Replies
View Related
Mar 26, 2011
So Im trying to learn a little bit more about WCCP so I thought I'd load up a centos VM and just install squid on it. With the base config running I can setup an explicit proxy by configuring my IE session to use the squid IP on port 3128. Proxy works fine and I see entries in the access log on the centos box. Now, since Im only running squid on the box Im going to change the listening port to 80 so I can transparent proxy with WCCP on my ASA. So I set the WCCP2 config on squid as shown.
View 10 Replies
View Related
Oct 18, 2011
We have 881 routers and are planning on testing out some WAN optimizing hardware, we're told that our router needs to support PBR and WCCP protocols. Will this router handle it?
View 3 Replies
View Related
Feb 28, 2013
if the Cisco Switches in my enviorment can support WCCP?
View 1 Replies
View Related
May 25, 2012
I need to roll out a Bluecoat as a WCCP for a ASA 5520.
View 3 Replies
View Related
Jul 17, 2011
I currently have WCCP redirection setup on my ASA 5520 to redirect to an ironport on ip address 10.11.1.10. The ASA inside ip is 10.11.1.1 and the ironport is setup for transparent redirection to that IP. This all works well and the Service Identifier i'm using for WCCP is 95.I am now creating another WCCP group because on my ironport I have 4 interfaces so I wanted to use them for our admin network. So I created an ACL on the ASA for our admin traffic and I want to redirect that using Service Identifier 94 to the ip on the ironport of 10.11.1.22. But I can't get traffic to redirect.
View 1 Replies
View Related
Jun 16, 2012
I am trying to setup WCCP on our 4507. For some reason I cannot get this to work! The config I have tried is below. I can't figure out
ip wccp web-cache group-list IRONPORT-GROUPLIST
ip wccp source-interface GigabitEthernet2/24
!
Interface Vlan160
[Code].....
View 2 Replies
View Related
Jul 19, 2011
When the following was issued:
ip wccp 0 redirect-list wccp_acl group-list 10 password 0 ourpassword
Received this error:
MDT: %COMMON_FIB-3-FIBIDBINCONS2: An internal software error occurred. WCCP:0 linked to wrong idb Loopback0 (xyz node name)
When the following was issued 10 minutes later:
ip wccp 70 redirect-list wccp_acl group-list 10 password 0 ourpassword
No error msg (but now wccp was active)WCCP appears to be working but we are ** having problems connecting ** with our websense (7.6) box via GRE.Websense is connected to the 6509 which is connected this 3750 switch.
View 2 Replies
View Related
Jul 20, 2011
I’m currently trying to work out what router we need to do WCCP redirections to some WAN optimizers. We plan that there will 100-200Mbps worth of traffic that needs to be redirected.
We currently have a 7200 with NPE-G2 which already runs at 30% cpu without WCCP redirection. (From shaping and QoS.)
I’m worried that this will not be powerful enough for the redirections.
We would like to upgrade, but I want to do some research beforehand.I have looked everywhere and I cannot find any WCCP performance figures for the devices below.
-7200 with NPE-G2 -ASR1000 -3800 -3750 -6500 I am aware that the catalyst and the ASR can do the redirecting in hardware, so these means there is no real CPU hit until we exhaust the TCM? We plan to use in bound redirection and the redirect ACL is only 20 lines.
View 1 Replies
View Related
Nov 14, 2011
My problem is, it doesn’t seem like packets are making it to the linux/squid caching device, based on cache logs. Workstations that are being redirected in the router have no web browser access (they can ping 8.8.8.8 and google.com)
I have a linux box running squid successfully, which supports GRE WCCP. For the sake of argument, I will say that I am confident I have successfully configured that machine.
What’s really strange is this morning I came in and hind sight my test workstation looked like it may had restarted from an update. (maybe had internet access). The first thing I did was tweak the cisco config, as I was reading last night and saw:
“Be warned that if you are using NAT you MUST use the inbound interface otherwise the router only sees the NATted IP address as the source of your clients. This is bad, because the router is also therefore unable to see your cache engine and it will redirect the cache engine requests back upon itself.”
So I turned <ip cef> on and removed the <ip wccp web-cache redirect out> (I had in fa0/1 and out fa0/0 on overnight).
Then I proceeded to check the workstation and saw it had network access, I tested to see if it was in fact filtered by the proxy, and it was! (verified by cache logs aswell)
After some further successful testing, I made sure I saved any unsaved configuration changes, I rebooted the linux box and the router. Sadly the outcome was not good, I am back to where I was last night.
My router does routing/NAT and has two interfaces and is currently not running CEF
ip wccp web-cache redirect-list SQUID_PROXY
!
interface FastEthernet0/0
description WAN
ip address 1.2.3.4 255.255.255.248
ip nat outside
ip virtual-reassembly max-reassemblies 64
speed 100
full-duplex(code)
View 6 Replies
View Related
Apr 3, 2013
I have the following topology, WCCP is configurated on ASA, inside interface, lan users and websense machine are located on the same VLAN of my catalyst 3750G?I want to filter traffic on port 80 (www) to the users on the LAN side debug on the ASA show me that comunication between that device and Websense is OK, there is Here_I_Am and I_See_You packets
WCCP-PKT:D00: Sending I_See_You packet to WEBSENSE_PROXY w/ rcv_id 0000015B
WCCP-PKT:D00: Received valid Here_I_Am packet from WEBSENSE_PROXY w/rcv_id 0000015B
WCCP-PKT:D00: Sending I_See_You packet to WEBSENSE_PROXY w/ rcv_id 0000015C
WCCP-PKT:D00: Received valid Here_I_Am packet from WEBSENSE_PROXY w/rcv_id 0000015C
WCCP-PKT:D00: Sending I_See_You packet to WEBSENSE_PROXY w/ rcv_id 0000015D
From show WCCP i saw that WCCP engine and ASA were detected
FW# sh wccp
Global WCCP information:
Router information:
Router Identifier: 200.X.X.X
Protocol Version: 2.0
[code]....
View 5 Replies
View Related
Feb 14, 2013
I've got two RV082's connected. Each has a dynamic IP (changes typically every few weeks). I've configured the tunnels on both ends with a local and remote "Remote/Local Security Gateway Type" of "Dynamic IP + Domain Name(FQDN) Authentication".If I look at the VPN Summary tunnel status, it shows an IP address of "mydomain.dyndns.org 0.0.0.0" under the "Remote Gateway" column heading. The Tunnel Test "Connect" button is N/A.I can resolve both of the mydomain.dyndns.org entries on both sides of each VPN using the Diagnostic DNS lookup tool within each router. If I hardwire a fixed IP address for the Local and Remote Gateway everything works just fine. VPN is good.
I just can't seem to get the "mydomain.dyndns.org" function to work. It appears the router can't resolve the dynamic IP from the domain names on each of the routers.
View 2 Replies
View Related
Aug 30, 2012
I replace our aging rv082 routers with wireless rv220w routers. The gateway to gateway vpn works great, however I am no longer able to manage our print servers port 80 management page. I can ping any host with success, and I can manage hosts that have a port 10000 or 8000 web interface - but no port 80 ones... I had no issues when using the old rv082 routers...
View 0 Replies
View Related
Jul 6, 2012
I picked up a pair of RV220W's and before I spent loads of time at a remote site, I figured I'd go through some VPN testing at home to make sure I could get it setup properly. What this means is I've plugged the Internet uplink into a switch, then from the switch into both routers & configured them (using unique static IP's for each) from there. For what its worth: While I have some IT experience, I don't have strong networking experience.
I setup several VLAN's on the local RV220W, and the end result is to make it so that an asset at the remote site with an IP in any of the ranges (192.168.121.0/24, 192.168.131.0/24, 192.168.141.0/24 and any future VLANs) can communicate with/access resouces at the local site. Likewise, an asset at the local site with an IP in any of the ranges (.121, .131, .141 + any future VLANs) should be able to reach the remote resources (currently just 192.168.181.0/24, but future VLANs as well).
This evening I tried to focus on the relevant VPN pages of the Administration Guide to get the VPN up. Leaving the defaults I got as far as establishing a link between both sites and it seems that things are working right: From the remote site (.181) I can access the local site (.121, .131, .141); and from the local site I can at least ping resources (a laptop) on the remote site. (Yay!)
However, when I physically connected an asset that had a 192.168.121.X, 192.168.131.X and 192.168.141.X IP addresses to the remote RV220W (which is 192.168.181.0/24), I couldn't see it from the remote or local sites.I assume this is expected. But I'm reaching out to the community to see what other possibilities might be available becuase networking is a weak area for me. I figured it might be something like a Static [or Dynamic] Route but I really am not 100% sure.
'TECHNICAL' SPECS
Local Router LAN/WAN Settings:
LAN IP: 192.168.121.1 on default VLAN (1)
VLAN 13 defined 192.168.131.1 with DHCP enabled; Reservations created outside of DHCP scope
VLAN 14 defined 192.168.141.1 with DHCP enabled, Reservations created outside of DHCP scope
Inter VLAN Routing enabled for all VLANs
[URL]
View 7 Replies
View Related
