Cisco Systems 3560 Manual De Usuario
43-6
Catalyst 3560 Switch Software Configuration Guide
OL-8553-06
Chapter 43 Configuring Web Cache Services By Using WCCP
Configuring WCCP
•
You cannot configure WCCP and a private VLAN (PVLAN) on the same switch interface.
Enabling the Web Cache Service
For WCCP packet redirection to operate, you must configure the switch interface connected to the client
to redirect inbound packets.
to redirect inbound packets.
This procedure shows how to configure these features on routed ports. To configure these features on
SVIs, see the configuration examples that follow the procedure.
SVIs, see the configuration examples that follow the procedure.
Beginning in privileged EXEC mode, follow these steps to enable the web cache service, to set a
multicast group address or group list, to configure routed interfaces, to redirect inbound packets received
from a client to the application engine, enable an interface to listen for a multicast address, and to set a
password. This procedure is required.
multicast group address or group list, to configure routed interfaces, to redirect inbound packets received
from a client to the application engine, enable an interface to listen for a multicast address, and to set a
password. This procedure is required.
Note
Before configuring WCCP commands, configure the SDM template, and reboot the switch. For more
information, see
information, see
Command
Purpose
Step 1
configure terminal
Enter global configuration mode.
Step 2
ip wccp {web-cache | service-number}
[group-address groupaddress]
[group-list access-list] [redirect-list
access-list] [password
encryption-number password]
[group-address groupaddress]
[group-list access-list] [redirect-list
access-list] [password
encryption-number password]
Enable the web cache service, and specify the service number which
corresponds to a dynamic service that is defined by the application
engine. By default, this feature is disabled.
corresponds to a dynamic service that is defined by the application
engine. By default, this feature is disabled.
(Optional) For group-address groupaddress, specify the multicast group
address used by the switches and the application engines to participate in
the service group.
address used by the switches and the application engines to participate in
the service group.
(Optional) For group-list access-list, if a multicast group address is not
used, specify a list of valid IP addresses that correspond to the application
engines that are participating in the service group.
used, specify a list of valid IP addresses that correspond to the application
engines that are participating in the service group.
(Optional) For redirect-list access-list, specify the redirect service for
specific hosts or specific packets from hosts.
specific hosts or specific packets from hosts.
(Optional) For password encryption-number password, specify an
encryption number. The range is 0 to 7. Use 0 for not encrypted, and use
7 for proprietary. Specify a password name up to seven characters in
length. The switch combines the password with the MD5 authentication
value to create security for the connection between the switch and the
application engine. By default, no password is configured, and no
authentication is performed.
encryption number. The range is 0 to 7. Use 0 for not encrypted, and use
7 for proprietary. Specify a password name up to seven characters in
length. The switch combines the password with the MD5 authentication
value to create security for the connection between the switch and the
application engine. By default, no password is configured, and no
authentication is performed.
You must configure the same password on each application engine.
When authentication is enabled, the switch discards messages that are not
authenticated.
authenticated.
Step 3
interface interface-id
Specify the interface connected to the application engine or the web
server, and enter interface configuration mode.
server, and enter interface configuration mode.
Step 4
no switchport
Enter Layer 3 mode.
Step 5
ip address ip-address subnet-mask
Configure the IP address and subnet mask.