Web Cache Communications Protocol (WCCP) supports the redirection of any TCP or UDP connections to appliances participating in WCCP Service Groups. The appliance intercepts only those packets that have been redirected to it. The appliance accelerates traffic flows that match its Route Policy; all other traffic passes through the appliance unmodified.The two active Silver Peak appliances participating in the WCCP service group must be deployed out-of-path (Router mode). In this example, those appliances are at Site A. For the purposes of this specific example, Site B at the remote end deploys the appliance in-line (Bridge mode); there is no inherent restriction on what mode it needs to be.
n
n WCCP redirects all traffic that is in a WCCP Service Group shared by the appliance and router.A service group consists of a set of WCCP-enabled routers and appliances that exchange WCCP messages. The routers send traffic to the appliances in the service group. The configuration of the service group determines how traffic is distributed to appliances in the service group.
n To use WCCP, you must create a separate WCCP Service Group for each protocol (TCP and UDP) used in the SiteA-to-SiteB tunnel.
• Each appliance’s wan0 interface connects to network
• Do not connect lan0 interface of either appliance
• Each appliance needs a Silver Peak Appliance IP data path address (to originate and terminate tunnels)
• Each appliance needs a Silver Peak Management IP Address (for appliance configuration and management)Configure WCCP on Site A’s Silver Peak Appliances and the WAN router. Service Group IDs on the router and appliance must match.
• Configure two WCCP Service Groups on each Silver Peak appliance
(one for TCP and one for UDP)
• Configure two WCCP Service Groups on the WAN router
(one for TCP and one for UDP)Fail-safe behavior should always be tested before production deployment by ensuring that traffic continues to flow in each of the following cases:
1 With the appliance in bypass state
2 With the appliance powered off
Gather all the IP addresses needed for setup Install the Appliance A into the network Physical appliance: Connect both appliances to the same available subnet via an Ethernet LAN switch. Verify connectivity, connect power, and verify LEDs.Virtual appliance: Configure the hypervisor, with the required interfaces. Configure the Site A router for WCCP
• Configure an Access Control List (ACL) that redirects all traffic from the Site A subnet to the Site B subnet
• Configure two WCCP Service Groups — one for UDP, one for TCP In a browser, access and use the Initial Configuration Wizard to configure the appliance. Configure the WCCP Service Groups on Appliance A1
• Create a pair of Service Groups (TCP, UDP) for outbound redirection.
• Create a pair of Service Groups (TCP, UDP) for inbound redirection. In a browser, access and use the Initial Configuration Wizard to configure the appliance. Configure the WCCP Service Groups on Appliance A2
• Create a pair of Service Groups (TCP, UDP) for outbound redirection.
• Create a pair of Service Groups (TCP, UDP) for inbound redirection. Configure flow redirection for the Site A peers When you create a cluster, the peers keep track of which appliance owns each flow. If the path between client and server isn’t the same in both directions, the flow is redirected to the appliance that first saw it and “owns” it. In a browser, access and use the Initial Configuration Wizard to configure the appliance. Create a tunnel on each appliance Manually add Site A’s non-local subnets Manually add subnets that aren’t directly connected to an appliance interface so they can be advertised. Test the connectivity from both ends
n Although it isn’t a requirement, it’s considered a best practice to use different subnets for mgmt0 and the Appliance IP.
mgmt0 IP Address / Mask1 LAN Next-hop IP Address (optional) 2 WCCP Service Groups for outbound redirection WCCP Service Groups for inbound redirection
Please send comments or suggestions regarding user documentation to techpubs@silver-peak.com. |