Cisco Cisco Web Security Appliance S380 Guía Del Usuario

Router security and password

Cisco suggests using a service ID number from 90 to 97 for the WCCP service used for the return path 
(based on the source port).

For more information about creating WCCP services, see 

You must create at least one WCCP service when you configure the transparent redirection device as a 
WCCP router. If IP spoofing is enabled on the appliance, you must create two WCCP services. For more 
information about IP spoofing, see 

.

Navigate to the Network > Transparent Redirection page.

Verify the transparent redirection device is a WCCP v2 router. If it is not, click Edit Device to change it.

To add a WCCP service, click Add Service. Or, to edit a WCCP service, click the name of the WCCP 
service in the Service Profile Name column.

Configure the WCCP options.

 describes the WCCP options.

Service Profile Name

Enter a name for the WCCP service.

Service

Use this section to describe the service group for the router.

Choose to create either a standard (“well known”) or dynamic service 
group. 

If you create a dynamic service, enter the following information:

Service ID. Enter any number from 0 to 255 in the Dynamic Service 
ID field.

Port number(s). Enter up to eight port numbers for traffic to redirect 
in the Port Numbers field.

Redirection basis. Choose to redirect traffic based on the source or 
destination port. Default is destination port. 

To configure Native FTP with transparent redirection and IP spoofing, 
choose Redirect based on source port (return path) and set the 
source port to 13007.

Load balancing basis. When the network uses multiple Web Security 
appliances, you can choose how to distribute packets among the 
appliances. You can distribute packets based on the server or client 
address. When you choose client address, packets from a client always 
get distributed to the same appliance. Default is server address.

For more information about well known and dynamic service groups, see