command ' ip wccp redirect exclude in. "

Similar Questions

• WCCP redirect doesn't work is not on the router

  We have two routers Wan WAN1 and WAN2 is connected with different ISP to DC.

  I applied a redirection of wccp on the two routers create subinterface - going Dist Switch

  interface GigabitEthernet0/0,102

  encapsulation dot1Q 102

  IP 172.16.148.33 255.255.255.252

  54 IP wccp redirect in

  55 IP wccp redirect in

  penetration of the IP stream

  end

  creates an access list to redirect only a single host IP address-

  SH-SP ip access lists

  Expand the SP IP access list

  allow 10 host ip 172.16.144.101 one

  But when I check the wccp on router I get hits on refused packages.

  #sh ip wccp 52

  Global information WCCP:

  Router information:

  Router identifier: 172.30.148.255

  Service identifier: 52

  Protocol version: 2.00

  Number of Clients of Service Group: 1

  Number of routers in Service Group: 1

  Total of the redirected packets: 0

  Process: 0

  CEF:                               0

  Service mode: open

  Service access-list: - none -.

  Total packets deleted closed: 0

  Redirect the access-list: SP

  Total packets denied the redirect: 699473034

  Packages not assigned total: 0

  Group access list: 10

  Total Messages refused for the Group: 0

  Total authentication failures: 0

  Total GRE bypassed packets received: 0

  Process: 0

  CEF:                               0

  Hello

  Don't know if it's deliberate, but that you have defined two redirection on the same interface and you use groups 53 and 54, but you are referring to the Group of 52 in the show command.

  If you need to put two redirects from the same interface, shouldn't he'll be... out on one of them?

  Please download the entire config.

  Best regards

  Finn Poulsen

• Packet switching not EFC / what is 'classification of output EAC?

  Hello

  I noticed a 3945-DRY with fairly high CPU load without doing much, because there are more packages switching process that the CFR switched.

  To study, I did the following:

  Router #sh ip cef switching statistics feature

  Input characteristics IPv4 CEF:

  Feature road Drop consume Punt Punt2Host gave

  Access the list 24911921 0 0 14678240 0

  0 0 0 0 20433673 routing policy

  24911921 0 0 14678240 20433673 total

  Output features IPv4 CEF:

  Feature Drop consume Punt Punt2Host new i / f

  Class output EAC 715266717 0 0 0 0

  Total 0 0 715266717 0 0

  Characteristics of post-encap IPv4 CEF:

  Feature Drop consume Punt Punt2Host new i / f

  IPSEC Post-encap 1 655816389 0 0 0

  Total 1 655816389 0 0 0

  CEF IPv4 for us offers:

  Feature Drop consume Punt Punt2Host new i / f

  Total                            0          0          0          0          0

  Features of punt IPv4 CEF:

  Feature Drop consume Punt Punt2Host new i / f

  Total                            0          0          0          0          0

  Features local IPv4 CEF:

  Feature road Drop consume Punt Punt2Host gave

  Total                            0          0          0          0          0

  Punted them (= "punted" another mechanism of switching, not switched cef) packages for the feature 'EAC exit class' increase of ~ 1000 per second.

  This made me wonder, what exactly is the feature 'CEC output class'. As I can see in the following output, this feature is enabled on my Tunnel Interface:

  Router ip int tu0 #sh

  Tunnel0 is up, line protocol is up

  The Internet address is x.x.x.x/xx

  Broadcast address is x.x.x.x

  Address determined by non-volatile memory

  MTU is 1400 bytes

  Support address is not set

  Transfer of directed broadcast is disabled

  Multicast reserved joined groups: 224.0.0.10

  Outgoing access list is not defined

  Inbound access list is not defined

  Proxy ARP is disabled

  Local Proxy ARP is disabled

  Security level is default

  Split horizon is enabled

  ICMP redirects are never sent

  ICMP unreachable is always sent

  Mask the ICMP responses are never sent

  IP fast switching is enabled

  Fast on the same switching interface IP is disabled

  IP stream switching is disabled

  IP CEF switching is enabled

  Vector turbo IP CEF switching

  Turbo IP vector draw

  Tunnel VPN routing/Forwarding "xxx".

  Quick change IP multicast is enabled

  Fast switching of distributed IP multicast is disabled

  Flags of IP route cache is fast, CEF

  Router discovery is disabled

  Output IP packet accounting is disabled

  Accounting of IP access violation is disabled

  TCP/IP header compression is disabled

  RTP/IP header compression is disabled

  Policy routing is disabled

  Network address translation is disabled

  BGP policy mapping is disabled

  Input characteristics: process Packet Capture, check MCI, TCP adjust MSS

  Characteristics of the output: classification of output of EAC, PNDH redirect, adjust EAC ranking NAT, TCP MSS, QoS preclassification

  Display the characteristics of encapsulation: IPSEC Post-encap output classification

  WCCP redirect outgoing is disabled

  WCCP redirect incoming is disabled

  WCCP redirect exclude is disabled

  Someone tell me, what is "CCE output ranking" and why this is receptive used by my router?

  Hello Sebastian,.

  EAC is the engine of common classification. I think that its used to "match" traffic for features like qos, nat, etc.. ". Based on the "HS in you ' out, some features on the direction of the output are originally be punted packets. You can try "debug ip cef drop" for a few seconds while the meter is incremented, usually it will give a reason to punt. The most common reasons are listed below.

  ACL log or log-entry option (or)

  An unreachable next hop for a route (or)

  A missing arp entry for a next jump (or)

  Entry to arp for outside nat... etc.

  Please rate this post without fault if you found it useful. *

  Thank you best regards &,.

  Vignesh R P

• NVI0 got a wrong address

  Hello

  I hope that someone knows better than me:

  Sometimes I address of 'bad' on the NVI0 Interface. I use the 'old' Setup nat with nat inside and outside. Sometimes the address of the NVI is that of a local loop (then everything works, as ospf between two routers) and the next router has the address of the external interface on the NVI. How that decision is made?

  ----------------------------------------

  NVI0 is up, line protocol is up

  The interface is unnumbered. Using the address of Loopback10 (10.51.2.10)

  Broadcast address is 255.255.255.255

  MTU is 1 514 bytes

  Support address is not set

  Transfer of directed broadcast is disabled

  Multicast reserved joined groups: 224.0.0.5

  Outgoing access list is not defined

  Inbound access list is not defined

  Proxy ARP is enabled

  Local Proxy ARP is disabled

  Security level is default

  Split horizon is enabled

  ICMP redirects are always sent

  ICMP unreachable is always sent

  Mask the ICMP responses are never sent

  IP fast switching is disabled

  Fast on the same switching interface IP is disabled

  IP stream switching is disabled

  IP CEF switching is disabled

  Turbo IP vector draw

  Quick change IP multicast is enabled

  Fast switching of distributed IP multicast is disabled

  Flags of IP route cache is fast, CEF

  Router discovery is disabled

  Output IP packet accounting is disabled

  Accounting of IP access violation is disabled

  TCP/IP header compression is disabled

  RTP/IP header compression is disabled

  Policy routing is disabled

  Network address translation is disabled

  BGP policy mapping is disabled

  WCCP redirect outgoing is disabled

  WCCP redirect incoming is disabled

  WCCP redirect exclude is disabled

  ----------------------------------------

  NVI0 is up, line protocol is up

  The interface is unnumbered. Using FastEthernet0/0 address (87.193. *. *)

  Broadcast address is 255.255.255.255

  MTU is 1 514 bytes

  Support address is not set

  Transfer of directed broadcast is disabled

  Outgoing access list is not defined

  Inbound access list is not defined

  Proxy ARP is enabled

  Local Proxy ARP is disabled

  Security level is default

  Split horizon is enabled

  ICMP redirects are always sent

  ICMP unreachable is always sent

  Mask the ICMP responses are never sent

  IP fast switching is disabled

  Fast on the same switching interface IP is disabled

  IP stream switching is disabled

  IP CEF switching is disabled

  Turbo IP vector draw

  Quick change IP multicast is enabled

  Fast switching of distributed IP multicast is disabled

  Flags of IP route cache is fast, CEF

  Router discovery is disabled

  Output IP packet accounting is disabled

  Accounting of IP access violation is disabled

  TCP/IP header compression is disabled

  RTP/IP header compression is disabled

  Policy routing is disabled

  Network address translation is disabled

  BGP policy mapping is disabled

  WCCP redirect outgoing is disabled

  WCCP redirect incoming is disabled

  WCCP redirect exclude is disabled

  --------------------------------------

  Thanks in advance

  NVI is a new feature in IOS 12.3 and later versions.

  It is activated using 'ip nat enable' on interfaces and we do not 'ip nat inside' or 'ip nat outside '.

  If you want to understand how translation and routing differs verifying implementation following the link:

  http://blog.internetworkexpert.com/2008/02/15/the-inside-and-outside-of-NAT/

• Redirect WCCP and Performance hit on 3750

  Maybe it's more of a "resizing" qtn more than anything else.

  Yesterday, I activated wccp redirect on a stack of distribution has collapsed/3750 of base, in an office with 150users. WAI is model 612.

  As soon as the configuration of the redirect has been applied, I found the network slowing significantly and received an event alert CPU of NEM, reports that CPU on 3750 stack exceeds the set threshold (65%). Put the threshold on the one hand, the cli is terribly slow and so I removed immediately redirect to the relevant interfaces. He bought the network back to normal in terms of performance.

  Is this a calibration problem or maybe a bad configuration or something else...?

  
  

  WAE:

  EDGE-WAE-01 #show worm
  Cisco Wide Area Application Services (WAAS) software
  Copyright (c) 1999-2009 by Cisco Systems, Inc.
  Cisco Wide Area Application Services Software Release 4.1.3 (build b55 April 18, 2009)
  Version: oe612 - 4.1.3.55

  00:13:45 compiled April 18, 2009 by cnbuild

  System has been restarted on Tue Apr 27 04:30:10 2010.
  The system was 6 hours, 21 minutes, 0 seconds.

  EDGE-WAE-01 #show inv

  PID: WAE-612-K9 VID: 0 SN: KQLLZBL
  EDGE-WAE-01 #sh worm
  Cisco Wide Area Application Services (WAAS) software
  Copyright (c) 1999-2009 by Cisco Systems, Inc.
  Cisco Wide Area Application Services Software Release 4.1.3 (build b55 April 18, 2009)
  Version: oe612 - 4.1.3.55

  00:13:45 compiled April 18, 2009 by cnbuild

  System has been restarted on Tue Apr 27 04:30:10 2010.
  The system was 6 hours, 31 minutes, 8 seconds.

  EDGE-WAE-01 # poster run | WCCP Inc.

  WCCP router-list of the 1 10.10.50.1
  WCCP promiscuity of tcp router-list-num 1 l2-redirect
  WCCP version 2
  !
  evacuation-method interception-method wccp negotiated return

  !

  ---------------------------------------------------------------------------------------

  3750:

  edge-cre-01 #show sdm prefer
  The current model is "routing Office" model.
  The chosen model optimizes resources in
  the switch to sustain this level of features for
  8 routed interfaces and 1024 VLANS.

  !

  processor of WS-C3750G-24TS-1U (PowerPC405) Cisco (revision F0) with K 131072 bytes of memory.

  512K bytes of memory simulated by flash not volatile configuration.

  SW Version SW Image model switch ports
  ------ ----- -----              ----------            ----------
  * WS-C3750G-24TS-1U 12.2 1 28 (50) SE3 C3750-IPSERVICESK9-M
  2 28 WS-C3750G-24TS-1U 12.2 SE3 (50) C3750-IPSERVICESK9-M

  Switch 02
  ---------------

  Switch availability: 3 days, 4 hours, 39 minutes

  Configuration register is 0xF

  edge-cre-01 # poster run | WCCP Inc.
  61 TN-WAAS-OUT list redirect IP WCCP
  62 TN-WAAS-IN redirect-list IP WCCP

  !

  edge-cre-01 #show run | start the standard TN-WAAS-OUT ip access list

  Standard TN-WAAS-OUT of access list IP
  10.10.10.0 permit 0.0.1.255
  permit 10.10.25.0 0.0.0.255
  !
  TN-WAAS-IN extended IP access list
  permit tcp 10.20.0.0 0.1.255.255 10.10.10.0 0.0.1.255
  permit tcp 10.20.0.0 0.1.255.255 10.10.25.0 0.0.0.255
  permit tcp 10.128.16.0 0.0.0.255 10.10.10.0 0.0.1.255

  Here is a list of best practices to follow to do forwarding of wccp on hardware platforms such as the 3750.  I found it in the link below.

  http://www.Cisco.com/Web/services/news/ts_newsletter/tech/ChalkTalk/archives/200806.html

  The following best practices should be applied to the implementation of WCCP on a hardware platform:

  • L2 transfer
  • Assignment of mask
  • Interception of incoming traffic
  • No ' exclude ip wccp redirect in.

  Your configuration "output method negotiated return of interception-method wccp" will appeal to a WCCP GRE tunnel to create of the 3750 to CAI.  All traffic will be then be redirected a software based on this configuration line.

  "Game of negotiated return as the method of evacuation. With this specification, the Cisco WAE uses GRE to return traffic redirected to the router intercepting. Note: in this case, WCCP negotiated WCCP GRE return method. »

  Found here: https://www.cisco.com/en/US/prod/collateral/contnetw/ps5680/ps6870/prod_white_paper0900aecd806d976a_ps6474_Products_White_Paper.html

  I'd stick to best practices that Zach has described in the link at the beginning of this post.  It's a very well written on the WCCP redirect article.

  Concerning

• Best practices with streams WCCP of WAAS

  Hello

  I have a module WAAS SRE 910 in 2911 router that intercepts packets this router with WCCP.

  All packets are received by the external interface (gi 0/2, connected to a switch with port configured in vlan WCCP) and are sent back to the router via the internal interface (IG 1/0 connected directly to the router):

  WAAS # sh interface IG 1/0

  Internet address: 10.0.1.1

  Subnet mask: 255.255.255.0

  State of the admin: to the top

  Operating status: running

  Maximum transfer unit size: 1500

  Entry errors: 0

  Entry packets dropped: 0

  Packets received: 20631

  Output errors: 0

  Output packets dropped: 0

  Load interval: 30

  Input rate: 239 bps, 0 packets/s

  Output: 3270892 bps, 592 packets/s

  Packets sent: 110062

  Auto-negotiation: on

  Full Duplex: Yes

  Speed: 1000 Mbit/s

  WAAS # sh interface 2/0 gi

  Internet address: 10.0.2.1

  Subnet mask: 255.255.255.0

  State of the admin: to the top

  Operating status: running

  Maximum transfer unit size: 1500

  Entry errors: 0

  Entry packets dropped: 0

  Packets received: 86558

  Output errors: 0

  Output packets dropped: 0

  Load interval: 30

  Input rate: 2519130 bps, 579 packets/s

  Output rate: 3431 bps, 2 packets/sec

  Packets sent: 1580

  Auto-negotiation: on

  Full Duplex: Yes

  Speed: 100 Mbps

  The default route configured in module WAAS is 0.0.0.0/0 to 10.0.1.254 (interface of the router).

  It would be better that the packets leave module WAAS of the external interface (instead of the internal interface)?

  Is there a best practice recommended by Cisco on this?

  Thank you.

  Stéphane

  Hi Stephane,

  That's right, internal interface means SM1/0.

  The best way is to have traffic at the start of the internal interface module so that we are sure, it hits the redirect exclude statement and that we do not have the crest of the loops because WCCP.

  Kind regards

  Nicolas

• 2 WAE WCCP l2 only 1 gets traffic

  Hello

  I have 1 router WAN and 2 devices configured in WCCP. The configuration works very well except that only the first WAVE that sees the router and set the WCCP receives traffic. What I mean is that the two waves see the router and vice versa. When I set the WCCP link, the first WAVE to his establishment becomes WAE DRIVING and another doesn't get it packages. If I disconnect the WAE lead or change its configuration WCCP and put again, WCCP switches the other WAE and the other is now exclusevly receiving traffic. No load balancing is reached.

  First of all here is my configuration:

  1 router WAN Cisco ISR G2 2911 IOS 15.2 (1) T

  WAAS in WAVE-274 cisco 2 version 4.3.3 configured in the same way for WCCP.

  Router IP: 10.x.y.1/22

  WAVE IPs: 10.x.y.9 and 10.x.y.7 22 and default gateway is the router 10.x.y.1

  Users are on the same network 10.x.y.0/22 (is that a problem? I read in a WAAS setup guide the WAE cannot be in the same network as the users)

  Second, here is the relevant config:

  Router:
  

  IP cef

  WCCP IP 61

  WCCP IP 62

  interface GigabitEthernet0/0

  Description * LAN connection *.

  61 IP wccp redirect in

  IP addr 10.x.y.1 255.255.252.0

  !

  interface GigabitEthernet0/1

  Description * WAN connection *.

  62 IP wccp redirect in

  addr IP WAN_IP...

  !

  WAAS:
  

  primary-interface GigabitEthernet 1/0

  interface GigabitEthernet 1/0

  IP address 10.x.y.9 255.255.252.0 (et.7 during the second WAVE)

  !

  interface InlineGroup 1/1

  Shutdown

  !

  WCCP router-list 1 10.x.y.1

  WCCP promiscuity of tcp router-list-num 1 redirect l2 l2-back

  WCCP version 2

  When I do the following on the router:

  show ip wccp 61 detail

  or see the ip wccp 62 retail

  I see:

  The WCCP customer information:

  WCCP Client ID: 10.x.y.7

  Protocol Version: 2.0

  Status: usable

  Redirect: L2

  Package return: L2

  Assignment: HASH

  Initial hash Info: 00000000000000000000000000000000

  FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

  Assigned hash of information: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

  00000000000000000000000000000000

  Allocation of hash: 128 (50.00%)

  S/w redirected packets: 103912
  

  Connection time: 03:34:05

  GRE has bypassed the packages

  Process: 0

  CEF:                   0

  Errors: 0

  WCCP Client ID: 10.x.y.9

  Protocol Version: 2.0

  Status: usable

  Redirect: L2

  Package return: L2

  Assignment: HASH

  Initial hash of information: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

  00000000000000000000000000000000

  Assigned to Hash Info: 00000000000000000000000000000000

  FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

  Allocation of hash: 128 (50.00%)

  S/w redirected packets: 0
  

  Connection time: 01:46:24

  GRE has bypassed the packages

  Process: 0

  CEF:                   0

  Errors: 0

  On the WAAS, settings of assignment of WCCP for load balancing is the default: hash. (Hash on Source IP (Service, 61) :))

  the method of evacuation is IP forwarding

  I have multiple connections from different source IP addresses and somehow they all end up on the same WAE axe:

  ConnID Source IP: IP port: port Dest PeerID Accel RR

  360 10.x.y.3:49463 10.q.w.36:52732 XX TMDL 16.1%

  373 10.x.y.4:55005 10.q.w.36:52732 XX TMDL 24.8%

  I checked several places and read the best practices; support for router platform... and it seems that the config is OK

  http://www.Cisco.com/en/us/prod/collateral/contnetw/ps5680/ps6870/white_paper_c11-608042.html

  Any ideas?

  Thank you

  Patrick

  
  

  That question has been in the session 'ask the expert ':

  https://supportforums.Cisco.com/message/3482826

• ASA 5555 X with power Module of fire and redirect URL to WSA

  My question is related to the flow of traffic with an ASA 5555 X with the power of fire services module and a WCCP redirect a device of the WSA.

  I think that the traffic flow should occur such as:

  Traffic http--> ASA--> FP IPS--> WCCP in the WSA Proxy--> (Internet cloud)

  In this way the IPS could identify all customers before traffic hits the Proxy of the WSA.

  So the question is, is the policy of Service on the SAA get processed before the WCCP redirect? Is - this configurable? Or the ASA deals the WCCP redirect before the Service policy routing traffic through the ASA?

  Y at - it guides that go into the details of this scenario?

  Thank you

  David

  David,

  There is no plan to join WSA ASA/power of fire or FTD. Each has strengths and treats the customers with different requirements.

  WSA like you know offer customization deep and rich reports or web filtering. However, it is limited to http/80 and https/443. Firepower is an easy solution if you already use it for NGIPS and/or Malware protection. It lacks some of the features of the ASO reporting (although FMC can be highly customized if you dig deep).

  There are also OpenDNS to consider whether it's capabilities are calls for you.

• Interception of WAAS WCCP on 6509

  Hello:

  I have a question about the use of WCCP interception in a basic design has collapsed.  We have a 6509 who has multiple connections to another provider of Wan services transmitted to him on IVR/routed ports.   "Redirection Ip wccp 62 in ' is used on all uplink for the different WAN service provider and" redirect Ip wccp 61 in ' is used on the virtual server's LAN interfaces.  How the interception of WCCP works when:

  1. traffic comes in uplink a WAN service provider and there is another uplink of Wan services provider both have a statement of "redirect ip wccp 62 in ' on uplink?  It's transit traffic that does not affect the server segment. WCCP knows not to send this traffic to the WAAS based on both interfaces have 'ip wccp 62 redirection"or maybe based on CEF research?  Or an ACL must be used to prevent inspection of transit traffic?

  2. traffic comes in uplink a WAN service provider with "redirect ip wccp 62 in ' and send to an interface that does not all configured redirection.  that is the traffic flow is a pair of "redirect the ip wccp 62 in ' and ' ip wccp redirect 61 in ' in the path.  This causes traffic in one direction to be inspected, but not the other way around?

  Thank you

  Patrick

  Hi Patrick,

  When you set up ' redirect to ' interface, 'Coming IN' on this interface, the traffic will be redirected to WAE.

  1: When traffic arrives on the interface WAN who has 'ip wccp 62 redirect' and leaves WAN another link that
  a 'ip wccp redirect 62.

  In this case when traffic arrives on the first WAN interface it will be redirected to WAE. The WAE will then be sent
  Back to its default gateway (IP forwarding). The Router forwards then out through the second WAN interface

  If you don't want that traffic to be redirected to WAE, you can then configure WCCP redirect list based on the access list
  to allow only the traffic intended for the segment of the server

  2: This will cause traffic only arriving on the interface that is 'ip wccp redirect 62' to be redirected to WAE.

  WCCP service 61 made redirect based on IP Source while service 62 is a redirect based on IP of Destination

  When the traffic arrives on the WAN interface that has ' ip wccp redirect 62 in ', it will redirect you to WAE based on the Destination
  address. The WAE will then returned it to its default gateway (IP forwarding). The router will route to the Destination.

  The answer to this Destination arrives on the interface which has not stated of 'ip wccp redirect', so it will not
  redirected to WAE.

  A point to remember, the traffic through WAE must be symmetric, which means to see the request and response
  so that it can optimize traffic

  Attached document provides detailed explanation of wccp.

  Hope this helps,

  Best regards
  Rahul

• Imposed restrictions on the WSA-S370 WCCP

  Hi all

  Transparent proxy' design ing.

  WCCP running on ASA5585X - everything configured properly (client and server even vlan - and all works well under low load)

  2 x S370 to assume responsibility for about 4000 users-

  At the moment we have migrate as-is (legacy DMZ) to the new DMZ build (injection default route attracts outbound traffic-) we see that about 8000 sessions are get established and after that it them to become dead slow - users complain that a web page loading takes forever.

  Our initial thought was that the S370 just didn't cut and we had underestimated the load (Cisco expresses the burden with regard to 'users' is very coarse, because a user can trigger obviously hundreds of sessions, HTTP (S) - hard to rate it properly without the forensic data on the "post-haemorrhagic" State.)

  Now - I've read before that scheduled bandwidth that a single S-370 will be able to fill out (and we do a lot of inspection and filtering as it is a highly secure environment) a max of 100 Mbps. Our total capacity of outgoing internet access is 1 Gbit/s to offer a time frame.

  Now here's the kicker - while performance endured - issues we have activated explicit proxy - and these pages loaded very quickly. So my initial theory that the S-370 was entirely flooded was apparently not precise.

  The only diff I recognize that here is that explicit proxy is not build on GRE encapsulation (because it is not even hitting the WCCP redirect - but routed interface to one of the proxies directly).

  Two possibilities-

  • ASA cannot deal with the load - (ASA play WCCP SW - and is not the best platform to perform the WCCP in a relatively important environment - but 8000 sessions is not huge or can't see us high CPU load or any other evidence that guy was out of steam)

  -or-

  S 370 taking a serious blow to the GRE decapsulation at one point-

  Is it all I can get either ASA and S - 370 to identify the real cause.

  Attached graphics (for a single S370) are attached - this day-1 (19 Nov) - migration began around 10:00.

  The second (20th) day - are not direct traffic tied (customer did not have any other attempts before that we can identify the problem)-we did what we could to simulate a substantial load with Load Runner on a few laptops but I realize counts rise time and horsepower IO may not approach the total amount of actual users who propulseraient in the moment that would change us the default gateway new

  We have an open TAC cases - that I had hoped would learn us that we have either underestimated the required number of WSA for design or out of the ASA as a WCCP server - so far nothing conclusive however.

  Kind regards

  Rik

  This ACL is going on the 'redirection list' in the GUI.  He coontrols that the traffic gets thown you can be redirected to had it, twice without it.

  7.7 is SO slow.  Notice of the ATC should have 7.5...  8.x has a lot of performance fixes.

• switchport autosate exclude

  Hi eveyone,

  I have config int vlan 2

  then 2 - layer 2 VLANs

  After that, I put IM interface vlan 2

  also, I run the command

  switchport autostate exclude

  When I did, then int vlan went from top to - bottom.

  Need to know why the int vlan went down to status?

  Thank you

  MAhesh

  For your IVR back, at least one interface that is in front of the Vlan to be upward. In your case I guess that you had only a say article gi1/0/1 interface in the vlan 2, the command that you ran tells the switch to exclude the determination of the State of the SVI 2 G1/0/1.

• Cisco 6500 - WCCP - high CPU

  I'm setting up a stand-alone WAE-7341 engine content ACNS used to webcaching only.

  When I activate the redirect l2 and l2-back on the WAE I get high CPU on my Cisco 6504-E with WS-SUP32-GE-3 b-WS-F6K-PFC3B. The 6500 status of wccp as L2 for redirection and return and webcache work but this CPU spikes at 70%.

  IOS code: s3223-adventerprisek9_wan - mz.122 - 33.SXH7.bin

  MDF-6504 #show proc sort cpu | 0.00 EXC
  CPU utilization for five seconds: 47/45%; 01:00 %; 05:00 %
  Process PID Runtime (ms) Invoked uSecs 5 Sec 1 Min 5 Min TTY
  152 9304 5144 1808 0.71% 0.22% 0.17% 1 SSH process
  139 46322920 12113823 3823 0.47% 0.40% 0.44% 0 CDP Protocol

  I don't see what process is the cause, but if I remove the WCCP in the interface, it drops to 1% so I know for a fact that WCCP is the cause.

  If I remove the redirect l2 and l2-back on the WAE, WCCP on the registers of 6500 WILL redirect and return on the 6500 and CPU falls to 5%.

  If I activate the option "wccp webcache accelerated" on the 6500, I can't WCCP upward with or without back l2 and l2-redirection on the WAE options, it displays:

  001782: 21:24:00.055 Jan 28: WCCP - EVNT:wccp_update_assignment_status: enter

  001783: 21:24:00.055 Jan 28: WCCP - EVNT:wccp_update_assignment_status: exit

  001784: 21:24:00.055 Jan 28: WCCP - EVNT:S00: Here_I_Am [hidden ip] package fwd w/bad method 00000001, offered 00000002

  001785: 21:24:00.055 Jan 28: WCCP - EVNT:S00: Here_I_Am package [hidden ip] with capabilites incompatible

  Can anyone say about this issue, this 6500 is the ability to redirect/rewrite of material? My WAE is directly connected to the blade of 6500 WS - X 6548-GE-TX on the same vlan I have do a wccp redirect on.

  g3/4 interface

  WAE-7341 description

  switchport access vlan 600

  interface VLAN 600

  property intellectual cache wccp web redirection in

  Any method, ideally you do not place the WAE on the same VLAN entering as the users.

• Use to EXCLUDE in HBR

  Hi all
  
  I was wondering if anyone knows if the EXCLUDE command has definitely been excluded from HBR. We use v11.1.1.3.
  
  Thank you
  
  Brian

  Unfortunately, it does not work for me either. I too have a 11.1.1.3 instance. I don't know about 11.1.2.

  (Well enough), you can work around EXCLUDE with a PATCH and @REMOVE. Yes, this isn't the same thing and it should really be there, but it is close.

  If it's any consolation, syntax in the calculation Manager check seems to EXCLUDE. If your need to EXCLUDE is great, maybe it's an alternative?

  Kind regards

  Cameron Lackpour

• the command - stored procedure support

  Hi all
  
  I'm having a lot of trouble getting my head around an update command / stored procedure, I took out all my books and has spent the last two days on Google which has aggravated my confusion. In simple terms what I try to do is to update a field in a table with the ordered there, but according to certain criteria. So my table contains the fields - following
  
  JBAID
  JBASiteID
  JBADatePosted
  JBAPostFor
  JBANotified
  
  What I want to do is to update the value of the JBANotified field for all records that meet the following requirements for Y
  
  The criterion is-
  
  WHERE the DATEADD(d,JBAPostFor,JBADatePosted) BETWEEN DATEADD (d,-7, GETDATE() AND GETDATE() AND JBANotified = ' AND JBASiteID = MMColParam n (where MMColParam is Session("SITEID")))
  
  So I just tried to build a command procedure / stored - which reads (see attached code) (more than probably all bad)
  
  I can't get my head around things-
  
  First rethink code in the first place, execution of the command on the loading of the page and then when the command run the redirection to the next page.
  
  I would really appreciate help with this-
  
  Thank you all
  

  Do you use the CS3 with ASP/VBScript? There is a bug in the implementation of the order which has this broken feature.

  I asked about it in this forum several months ago, but now I can't find my original post, but I found another post that talks about the same thing: http://www.adobe.com/cfusion/webforums/forum/messageview.cfm?forumid=12&catid=263&threadid = 1281539 & enterthread = y

  My solution is to fall back to DW8 for the edition of the command, but use CS3 for the rest. I don't know what you're supposed to do if you do not have a previous version.

  It seems that your sql is correct, but the bug prevents the second block of code updated with the correct values.

  I hope that a solution is coming...

• WAAS in 2921 SRI - G2

  Hi all

  I have a 2921 with a switch module of the ether 16port and need to install the SM - SRE 710 for WAAS.

  2921 G0/1 is the WAN 10.1.1.1 and internal port G1/0 LAN 10.1.2.1

  How can I assign IP addresses to the SRE module so that I can use WCCP to direct traffic to the correct interface.

  Or is this not possible with already installed ESM.

  Hello

  I think it works very well.

  Through the SM0 interface you configure the IP address of router-side (command "ip address... ") as well as the IP address side WAAS ("module of service address ip... ") and WAAS side gateway by default ('service-module ip default-gateway '). You must use a subnet here, which is not used anywhere else on your network. See also here:
  http://www.Cisco.com/c/en/us/TD/docs/routers/access/interfaces/software/feature/guide/ISM-SM-SRE.html#wp1140891

  In order to configure WCCP redirect, that's all that is necessary. Of course, you must also adjust the routing in your networkf to ensure that the new subnet is accessible, you can reach WAAS on the SRE for the purposes of management (including the management of a WAAS CM).

  Side of WAAS would then give you the IP address of router-side of the SM0 interface in the list of WCCP router.

  Kind regards
  Michael