Cisco Cisco Web Security Appliance S670 User Guide
2-3
Cisco AsyncOS 8.0.6 for Web User Guide
Chapter 2 Connect, Install, and Configure
Connecting the Appliance
Step 2
(Optional) Connect the appliance to data traffic either directly or through a transparent redirection
device:
device:
Ethernet Port
Explicit Forwarding
Transparent Redirection
P1/P2
P1 only:
•
Enable "Restrict M1 port to
appliance management services
only”.
appliance management services
only”.
•
Connect P1 and M1 to different
subnets.
subnets.
•
Use a duplex cable to connect
P1 the internal network and the
internet to receive both inbound
and outbound traffic.
P1 the internal network and the
internet to receive both inbound
and outbound traffic.
P1 and P2
•
Enable P1.
•
Connect M1, P1, and P2 to
different subnets.
different subnets.
•
Connect P2 to the internet to
receive inbound internet traffic.
receive inbound internet traffic.
After running the System Setup
Wizard, enable P2.
Wizard, enable P2.
Device: WCCP v2 router:
•
For Layer 2 redirection, physically
connect router to P1/P2.
connect router to P1/P2.
•
For Layer 3 redirection, be aware of
possible performance issues with
Generic Routing Encapsulation.
possible performance issues with
Generic Routing Encapsulation.
•
Create a WCCP Service on the
Appliance.
Appliance.
Device: Layer-4 Switch:
•
For Layer 2 redirection, physically
connect switch to P1/P2.
connect switch to P1/P2.
•
For Layer 3 redirection, be aware of
possible performance issues with
Generic Routing Encapsulation.
possible performance issues with
Generic Routing Encapsulation.
Note
The appliance does not support
inline mode.
inline mode.
M1 (optional)
If "Restrict M1 port to appliance
management services only” is
disabled, M1 is the default port for
data traffic.
management services only” is
disabled, M1 is the default port for
data traffic.
N/A