Cisco Cisco Web Security Appliance S170 사용자 가이드
C O N F I G U R I N G T R A N S P A R E N T R E D I R E C T I O N
C H A P T E R 2 1 : C O N F I G U R I N G N E T W O R K S E T T I N G S
475
C O N F I G U R I N G TR A N S P A R E N T R E D I R E C T I O N
When you configure the Web Security appliance web proxy service in transparent mode, you
must connect the appliance to an L4 switch or a WCCP v2 router, and you must configure the
appliance so it knows to which device it is connected. You configure the device on the
Network > Transparent Redirection page.
must connect the appliance to an L4 switch or a WCCP v2 router, and you must configure the
appliance so it knows to which device it is connected. You configure the device on the
Network > Transparent Redirection page.
Figure 21-5 Network > Transparent Redirection Page
On this page, you can choose the device that transparently redirects traffic to the appliance,
either an L4 switch or a WCCP router. When you choose an L4 switch as the device, there is
nothing else to configure on this page.
either an L4 switch or a WCCP router. When you choose an L4 switch as the device, there is
nothing else to configure on this page.
However, when you choose a WCCP router as the device, you must create at least one WCCP
service.
service.
Working with WCCP Services
A WCCP service is an appliance configuration that defines a service group to a WCCP v2
router. It includes information such as the service ID and ports used. Service groups allow a
web proxy to establish connectivity with a WCCP router and to handle redirected traffic from
the router.
router. It includes information such as the service ID and ports used. Service groups allow a
web proxy to establish connectivity with a WCCP router and to handle redirected traffic from
the router.
You can create WCCP services that use the following service types:
• Standard service. The standard service is also known as a well known service because the
characteristics of it are known by both WCCP routers and the appliance. It redirects traffic
on port 80. It is identified as the “web-cache” service.
on port 80. It is identified as the “web-cache” service.
• Dynamic service. Dynamic services are any other service a web proxy creates, but the
web proxy must describe the components of the service group to the router. AsyncOS
supports the creation of any dynamic service you choose to define. To create a dynamic
service, you must provide the service ID number, port numbers, and specify whether to
redirect packets based on the destination or source port and whether to distribute packets
based on the client or server address.
supports the creation of any dynamic service you choose to define. To create a dynamic
service, you must provide the service ID number, port numbers, and specify whether to
redirect packets based on the destination or source port and whether to distribute packets
based on the client or server address.