Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 0 subscribers
  • Views 10698 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ASA config for transparent use of Sophos Web Filter VM

jjester

Hello - I have a customer that has purchased a Sophos Web Filter VM and spun it up in his ESX environment. He says he has it configured and needs me to re-configure his Cisco ASA to make things work. I have been looking through the documentation on the website and see that other Sophos products can use WCCP.

Can the Web Filter VM use WCCP? What do I need to have him check on the Sophos side to make sure it is configured to use WCCP if it can be?

Also, can anyone comment on this configuration I want to add to the ASA? 10.10.1.235 is the address of the Web Filter VM.

ACL for users

access-list wccp_proxy_hosts extended permit ip 10.10.1.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.2.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.3.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.4.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.5.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.6.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.7.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.8.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.9.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.10.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.11.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.12.0 255.255.255.0 any

access-list wccp_proxy_hosts extended permit ip 10.10.13.0 255.255.255.0 any

ACL to web filter

access-list wccp_proxy_server extended permit ip host 10.10.1.235 any

Use WCCP

wccp web-cache redirect-list wccp_proxy_hosts group-list wccp_proxy_server

WCCP redirection

wccp interface inside web-cache redirect in

WCCP redirection for HTTPS

wccp 70 redirect-list wccp_proxy_hosts group-list wccp_proxy_servers

wccp interface inside 70 redirect in

I really appreciate insight from anyone that has done this before, or has valuable knowledge of Sophos Web Filter VM and/or Cisco ASA.

Thanks.

:34433


This thread was automatically locked due to age.
Unfiltered HTML