Iwsva supports web cache communication protocol wccp version 2, a protocol defined by cisco systems. Wccp best practices for cisco waas it tips for systems and. Troubleshooting wccp on catalyst 6500 cisco community. To reduce configuration complexity, i was looking into configuring redirec. Web cache communication protocol wccp is a ciscodeveloped contentrouting protocol. Use this document in combination with documents listed in the related. This wccp sample configuration can be modified to work on a cisco pix or asa firewall. Registered users can view up to 200 bugs per month without a service contract. Wccp and waas configuration for catalyst 6500 and nexus 7000 the waas system consists of a set of devices called wide area application engines waes that work together to optimize tcp traffic.
Appliance vendors try to redirect using wccp or pbr. You can also see it from the cisco support community at. Use wccp gre encapsulation when working with routers because most routers do not support l2 redirection. On platforms that use software based redirection, verify that the total packets sw redirected counters are incrementing in the above command output. L2 forwarding simply rewrites the destination mac address of the intercepted packet to equal the mac address of the target wccp client. Its main purpose is to transparently redirect users to cache servers, without them having to configure proxy settings in their browsers. Oct 28, 20 appendix b, configuration limits for cisco nxos layer 3 unicast features, release 5. The designated cache engine assigns the mask and value sets to the router in the wccp. A standalone copy or paraphrase of the text of this document that omits the distribution url is an uncontrolled copy and may lack important information or contain factual errors. If the route supports l2gre as a forwarding method, iwsva should select l2 when the router and iwsva are in the same network segment. This means that wccp gre mode does not work and we failed over to l2 mode negotiation which obviously failed as well, because we are not l2 adjacent with the proxy server. Transparency of deployment without endpoint configuration. Cisco nxos software for the nexus 7000 series devices does not. This guide describes how to configure unicast routing protocols and fhrp protocols on the nexus 7000 series switches.
Wccp best practices for cisco waas it tips for systems. Title description convention description boldface font commands and keywords are in boldface. Cisco nexus 7000 devices virtual device context privilege. However, if a content gateway cluster uses wccp exclusively, virtual ip failover can be used if no. Deploying and troubleshooting web cache communication protocol wccp for wan. Wccp sample configuration for cisco firewalls forcepoint. Cache control protocol wccp and vpc on your cisco nexus 7000. Cisco nexus 7000 series switches configuration guides. Wccp provides packet distribution through two algorithms, hash and mask. Cisco nexus 7000 series nxos interfaces configuration guide cisco nexus 7000 series nxos ip slas configuration guide. Cisco nexus 7000 series nxos command reference master. The assumption for this paper is that the reader is familiar with. Cisco intelligent traffic director itd is an innovative solution to bridge the performance gap between a multiterabit switch and gigabit servers and appliances. The designated cache engine assigns the mask and value sets to the router in the wccp redirect assignment message.
Dec 27, 2018 this wccp sample configuration can be modified to work on a cisco pix or asa firewall. Cisco nexus 5600 series nxos unicast routing configuration. To examine key nexus 7000 nexus 7700 design building. It is a hardware based multiterabit layer 4 loadbalancing, traffic steering and clustering solution on the nexus 5k6k7k9k series of switches. This line shown below creates the access list used to define the proxy. L2 forwarding requires that the wccp server ios is layer 2 adjacent to the wccp client. Multicast configuration comparison of cisco ios and nexus os. Refer to the configuring ssh and telnet section of the cisco nexus 7000 series nxos security configuration guide for more information about the cisco nxos ssh, scp, and sftp features. Use command show ip wccp to check if the configuration is working or not. This video provides the process to update issu in cisco nexus 7000 series. Dec 15, 2019 bug information is viewable for customers and partners who have a service contract. Wccp v2 and the content gateway configuration handles node failures and restarts. The following table summarizes cisco hardware platform support for redirection and return methods.
Feb 15, 2016 introduction this document helps in gathering logs and troubleshooting of issues related to waas. This course covers the key components and procedures you need to know to configure, manage, and troubleshoot the cisco nexus 7000 series switch. Use wccp l2 redirection as the packet forwarding method when working with switches or cisco 7600 series routers, because redirection can be performed in hardware. Quick overview wccp web cache communication protocol is a content routing protocol developed by cisco that allows you to redirect traffic in real time. Configure wccp on your cisco ios router techrepublic. Integration with cisco wccp trend micro internet security. To configure wccp you must create a service group that includes wccp servers and clients. It has builtin load balancing, scaling, fault tolerance, and serviceassurance failsafe mechanisms. The designated cache engine assigns the mask and value sets to the router in the wccp redirect.
Wccp clients are the devices receiving this traffic. I have a requirement to configure wccp on the nexus 7k for redirection of traffic to a wan optimiser. Bug information is viewable for customers and partners who have a service contract. The router matches these mask and value sets to the source ip address, destination ip address. For a single wccp server router to a single wccp client configuration, use and etherchannel if it is supported by the client. Cisco firewall service modules fwsms do not support wccp. Section wccpv2 and wccp enhancements in the feature guide for cisco ios software releases 12. Jan, 2014 the most important is, that the router id must match the wccp router ip configured on a wccp enabled proxy.
Page 82 related documentation cisco nexus 7000 series nxos interfaces configuration guide cisco nexus 7000 series nxos ip slas configuration guide. For more information, see the cisco nexus 7000 series nxos virtual device context configuration guide, release 4. I have a pair of nexus 5596up with l3 modules and the latest nxos version and im having trouble finding whether or not they support wccp. Oct, 2011 were in the process of deploying ironport web content filters on our network with wccp redirection from a pair of nexus 7010s running nxos 5. Nexus 7000 wccp with bluecoat proxysg cisco community. Im migrating from 6500 sup720 to n5k and use wccp to send traffic to websense filtering.
Cisco remote integrated service engine for citrix netscaler appliances and cisco nexus 7000 series switches configuration guide 29apr2014. Web cache communication protocol wccp is a protocol designed and developed by cisco systems. Jan 06, 2016 wccp and waas configuration for catalyst 6500 and nexus 7000. Examples will show common usecases for different module types and considerations for module interoperability. Web cache communication protocol wccp is a ciscodeveloped contentrouting. Nexus 7000 7700 architecture and design flexibility for. Configuration for the nexus switches first thing to do is enable the vpc feature. Ios defaults to using wccp version 2 if you do not explicitly specify a version. The following are the benefits gained when iwsva supports wccp. Page 83 obtaining documentation and submitting a service request other software document cisco nxos licensing guide cisco nexus 7000 series nxos.
The following table shows the licensing requirements for this feature. Advanced troubleshooting nexus 7000 series switches. Cisco cisco nexus 7000 4slot switch release notes page 1. Nexus 7000 nxos example ijk enterprise design study asr iosxe example abc retail design study isrios example vrfaware wccp best practices outofpath deployments. Overview the configuring cisco nexus 7000 switches dcnx7k v3. See your cisco product documentation for more information on the protocol. Cisco nexus 7000 series nxos unicast routing configuration. Cisco nexus 7000 series nxos virtual device context. Your software release might not support all the features documented in this module. Nexus 7000 7700 architecture and design flexibility for evolving data centres brkarc3601 tim stevenson. I have multiple sources and destination that require redirection and therefore multiple source and destination interfaces. Typically, this means turning off the service group on the wccp device for 60 seconds. Appendix b, configuration limits for cisco nxos layer 3 unicast features, release 5.
Anyone else who just wants to hang out and learn session goal troubleshooting methodology is the same, no matter the platform where and what where to look, and what to use quick and easy data collection cheat sheets. Lacp configuration and multichassis etherchannel on nexus. Cisco nexus 7000 series nxos virtual device context configuration guide, release 5. Configuration for both of the nexus switches is the same except where noted. Multicast configuration comparison of cisco ios and nexus os carol kavalla, ccsi, ccnp, ccdp introduction multicast is supported in the cisco ios, ios xr, ios xe, and in the nexus os. Find answers to configuring wccp on a cisco 4507 for use with ironport s160 from the expert community at experts exchange.
Cisco cisco nexus 7000 4slot switch release notes page. Multicast configuration comparison of cisco ios and. Introduction, page 6 j0 february 5, 2014 updated the cisco nxos release 6. In this paper, the focus is on the differences between the ios and the nexus os. To provide an understanding of the nexus 7000 nexus 7700 switching architecture, which provides the foundation for flexible, scalable data centre designs to examine key nexus 7000 nexus 7700 design building blocks and illustrate common design alternatives leveraging those features and functionalities. View and download cisco nexus 7000 series configuration manual online. See wccp load distribution and virtual ip failover. However, if a content gateway cluster uses wccp exclusively, virtual ip failover can be used if no user authentication features.
Wccp servers intercept sessions to be cached for example, sessions from users browsing the web from a private network. This guide also includes route maps, policybased routing, and wccp. What information is required a detailed problem description all the information results from your troubleshooting efforts versions of the involved devices. Jan 06, 2016 wccp and waas configuration for catalyst 6500 and nexus 7000 the waas system consists of a set of devices called wide area application engines waes that work together to optimize tcp traffic. Those implementing or have existing nexus 777k platforms in their network. Wccp and waas configuration for catalyst 6500 and nexus.
The same wccp routers and clients can participate in one or more service groups. Traffic might encounter a vpc loop and drop if you have web cache control protocol wccp and vpc on your cisco nexus 7000 series switch and the traffic migrates from a cisco nexus 65xx switch to your switch. Wccp and waas configuration for catalyst 6500 and nexus 7000. Here i create a portchannel via lacp over ports 91 and 101.
The switch runs cisco ios software, with appropriate version, in this example version 15. Cisco nexus 7000 4slot switch read user manual online or download in pdf format. In a nexus 7000 series chassis with dual supervisors, you can use the inservice software upgrade issu feature to upgrade the system software while the system continues to forward traffic. Cisco nexus 7000 series nxos fabricpath configuration guide 11jun2019. You must configure the wccp cache engine so that the forward and return traffic to and from the cache. Cisco 7600 series router cisco ios software configuration. Jun 24, 2016 this video provides the process to update issu in cisco nexus 7000 series. More recently, its been used for cisco and 3rd party security proxies, wan accelerators, application proxies, content delivery networks cdn, and more. As you can imagine, on a nexus switxh we can have a number of ips and, we do not necessarily want our highers ip interface to be the one participating in the wccp operation in my case it is the loopback management interface. Web cache communication protocol wccp is a ciscodeveloped contentrouting protocol that provides a mechanism to redirect traffic flows in realtime. Feb 15, 2016 wccp best practices for waas deployment.
Introduction this document helps in gathering logs and troubleshooting of issues related to waas. This is my experience of upgrading nexus 7000 series switches without disturbing the existing traffic. Dual wccp steelheads and interfaces with high availability. In a content gateway cluster, it is recommended that you not enable virtual ip failover in wccp environments. Wccp routers are cisco routers or switches capable of forwarding traffic meeting defined criteria. If you change the forward or return method configuration while there is an active connection with the wccp device, in order to renegotiated the method you must force the current connection to terminate. Web cache communication protocol wccp was developed by cisco many years ago for transparently deploying web caching hence the name. Deep dive into wccp load balancing not always the network.
Nexus 7000nxos example ijk enterprise design study asr iosxe example abc retail design study isrios example vrfaware wccp best practices outofpath deployments. Securing the console port, auxiliary port, and connectivity management processor. Were in the process of deploying ironport web content filters on our network with wccp redirection from a pair of nexus 7010s running nxos 5. Web redirection is working current for a test vlan using wccp redirection on the layer 3 vlan interface. Cisco nexus 7000 series nxos cli management best practices. A typical use case for wccp would be if you have a proxy or load balancer that you want to redirect traffic to, all transparent to the end userno configuration needed. Deploying and troubleshooting web cache communication. Regardless of how you configure a steelhead, if the cisco ios version on the router or switch is below the current cisco minimum recommendations, it might be impossible to have a functioning wccp implementation or the implementation might not have optimal performance. Cisco nexus 7000 seriesinservice software upgrade issu. Configuring wccp on a cisco 4507 for use with ironport. Cisco nexus 7000 series nxos release notes, release 6. Apr 12, 2007 configure wccp on your cisco ios router. Cisco nexus 7000 series nxos unicast routing configuration guide. These logs and basic troubleshooting is crucial before contacting to any escalated support.