Cisco Cisco Web Security Appliance S160 User Guide

Connect the Management interface if you have not already done so:

(Optional) Connect the appliance to data traffic either directly or through a transparent redirection device:

Connect external proxies upstream of the appliance to allow the external proxies to receive data from 
the appliance.

M1

Connect M1 to where it can:

Send and receive Management traffic. 

(Optional) Send and receive web proxy data traffic. 

You can connect a laptop directly to M1 to administer the appliance.

To connect to the management interface using a hostname 
(http://hostname:8080), add the appliance hostname and IP address to your DNS 
server database.

P1 and P2 (optional)

Available for outbound management services traffic but not administration.

Enable Use M1 port for management only (Network > Interfaces page).

Set routing for the service to use the Data interface.

P1/P2

P1 only:

Enable Use M1 port for 
management only.

Connect P1 and M1 to 
different subnets.

Use a duplex cable to connect 
P1 the internal network and the 
internet to receive both inbound 
and outbound traffic.

P1 and P2

Enable P1.

Connect M1, P1, and P2 to 
different subnets.

Connect P2 to the internet to 
receive inbound internet traffic.

After running the System Setup 
Wizard, enable P2.

Device: WCCP v2 router:

For Layer 2 redirection, physically 
connect router to P1/P2.

For Layer 3 redirection, be aware of 
possible performance issues with 
Generic Routing Encapsulation.

Create a WCCP Service on the 
appliance.

Device: Layer-4 Switch:

For Layer 2 redirection, physically 
connect switch to P1/P2.

For Layer 3 redirection, be aware of 
possible performance issues with 
Generic Routing Encapsulation.

The appliance does not support 
inline mode.

M1 (optional)

If Use M1 port for management 
only is disabled, M1 is the default 
port for data traffic. 

N/A