Cache Engine with a private address

Similar Messages

• How to Integrate 500 Series Cache Engine with WS-C3550-48-EMI

  We are having a Catalyst 3550 L3 Switch, which is being used to provide Internet service. Now we want to integrate a 500 Series Cache Engine so that outbound http traffic is cached.
  The Cat 3550-48-EMI switch is not supporting " ip wccp web-cache redirect out" command, instead it's supporting " ip wccp web-cache redirect in" command. So for outbound traffic no caching is happening. How this can be achieved?
  Regards,
  Malay.

  in and out means catch traffic when it comes in or when it goes out respectively.
  So you can configure the 'out' on the Internet facing interface to catch the request before it goes out to the Internet.
  But you can also configure the 'in' on the client interface to catch the request when it comes into the router.
  The 'in' gives much better performance because you catch the request before doing a route loockup.
  The only disadvantage is that if you have many client vlans, you need to configure this 'in' command for each one of them.
  Regards,
  Gilles.

• HT5590 Use caching server with multiple public Addresses?

  According to the Apple documentation, to use the caching server, all clients need to share the same public address via nat. On my network with many macs, this would appear to make the caching service useless, as we have multiple public addresses to which our clients are nat'ed (a full class C, to be exact). Is there anyway around this restriction, or am I simply going to be unable to use what looks like it would be a highly usefull service?

  Yes, the multiple internal/private subnets mapping to a single public IP is very common in the education/enterprise arena. It is the basic hub-spoke topology:
  where all spokes connect to needed resources at the hub, and only the hub is connected to the Internet. In the case of K-12 education, we need to run a content filter (by Federal rules) on student Internet connectivity. The most efficient way to do that is to locate the filter (along with other servers and resources) at the hub and then route all Internet traffic through the hub. Each spoke (and the hub) is a different internal/private network subnet ... 10.65.x.x, 10.66.x.x, etc. In my case I have 3M from each spoke to the hub, and then 45M from the hub to the Internet.
  In the "old" days ... pre 10.8 ... we had (and still have for some of our oler 10.4 computers) a software update server at each spoke, and computers at each spoke were configured (with the Apple software update script) to get their updates from the update server at their spoke ... iApps as well as OS apps. This worked perfectly!
  Now that Apple, in their Orwellian attempt to monitor and control iApps, has introduced this "either-or" attitude about using a local update server OR caching server  (but not giving you the option to get iApps from the local update server) they have really hurt schools like mine. Without being able to serve all updates locally on each spoke, updating becomes impossible when you are tryiing to udpate a lab full of computers, and the iApp alone is 1.2G for EACH computer ...and now it must come from the Internet since the caching server is 'broken.'
  I currently have case open with Apple Enterprise Support, and will now also get my K-12 Apple Support Tech invloved. I will share this info with them. Perhaps there is some solution that I do not know about, or perhaps there will be a solution created by Apple for situations like mine. I can't see being the only one with this problem, I just think that I may be one of the first to notice it due to my limiited bandwith situation.
  Thanks for your insight. Your original post got me thinking and enabled me to identify what *I* feel is the problem. I will keep this thread updated.
  M:>

• Cache engine with ASA

  Hi
  Can I use the Content Engine as a Reverse proxy server and deploy the servers and the CE in the DMZ. If yes then can I have the ASA do the WCCP or the router?
  Thank you
  Regards
  Aiyappa

  Hello Javier,
  It's missing there,
  The limitation is still present,
  Regards,
  Julio Carvajal

• Cache engine IP spoofing with CSS ?

  i would like to use css and cache engine in a spoofed ip source design to preserve identity of requestor.
  WCCP appears to be able to do this but not L4+ switching with CSS.
  Does anyone know of a way of doing this either as a transparent cache or proxy cache ?
  thanks in advance

  Alan, we discussed this by email in the case you opened.
  The command 'wccp spoof-client-ip enable' does work on the CE even
  if you are not using WCCP.
  On the CSS, just make a config similar to the one for one-armed transparent SCA config.
  Tested in the lab and it works.
  Gilles.

• Does the Cisco Cache Engine Work with the Cisco Local Director ?

  I need to know if it is possible and how to use cisco local director to redirect traffic to the cache engine in reverse proxy configuration and transparent proxy configuration.

  In directed mode, the client browsers are configured to point to a proxy to a virtual IP address on the Local Director. I know the Local Director does not support a real server that does not have a virtual address defined so it can't transparently forward like the CSS.

• Where does Mail keep its hidden cache of auto-complete email addresses.  I am plagued with an incorrect email adress I can't get rid of.  Have made sure it's deleted from Contacts and made sure it's deleted from "previous recipients" list in Mail - i

  Where does Mail keep its hidden cache of auto-complete email addresses.  I am plagued with an incorrect email address I can't get rid of.  Have made sure it's deleted from Contacts and made sure it's deleted from "Previous Recipients" list in Mail.  But it still keeps reappearing ... obviously a secret cache file hidden somewhere?

  Autocomplete has nothing to do with this problem.
  From the Mail menu bar, select
            Window ▹ Connection Doctor
  Look for a disused SMTP (outgoing mail) account in the window that opens. Double-click it. Another window will open, showing a list of all the outgoing mail accounts. The unwanted one will be selected. Click the minus-sign button to delete it, then click OK.
  If there's more than one unwanted account, repeat.

• Problems with transaction-logs on cache engines

  Good Day All,
  I have a Cache Engine 550 here and the transaction log working.log file got quite large.
  I was not able to export it to my ftp server so I logged into the Cache engine via ftp and downloaded the file to a PC.
  I then deleted the working.log file on the Cache Engine and rebooted the cache engine.
  The working.log file was not re-created as I had hoped it might be.
  I have created a file called working.log in the correct directory. This file does not seem to get updated though so this must not be right either.
  Any suggestions?
  regards,
  amanda

  Hi Zach,
  Thank you so much for writing back. I am running an archaic version of the software... i can check tomorrow. As to the logging.... i had not enabled transaction-logging in itself so it was a silly config error ...
  :) amanda

• ACE with cache engine "spoof" mode

  If Cache Engine use spoof mode, how ACE be configured for support this mode. Have it any command add into ACE?

  I am looking into this myself. Can the ACE work in this fashion:
  Clients VLAN 10
  Internet VLAN 20
  Cache Servers VLAN 30
  Traffic that comes in from clients on vlan 10, any of it that is tcp port 80, send to the cache on vlan 30. Traffic coming back from the internet, vlan 20, if its tcp port 80, send to the cache on vlan 30.
  Its basic layer 4 redirection. But when the traffic goes to the cache, the cache is not going to use its own IP to make the internet request, its going to use the clients IP, this is why a map is needed on vlan 10 and vlan 20, to ensure traffic is pipelined thru the ace. Has anyone done this?

• Streaming WMT (netshow) through PIX with Cache Engine

  Hello:
  I am trying to stream WMT from a pre-loaded Cache engine through a PIX firewall. I would like to use UDP for the streaming, but when I start the streaming TCP is selected by default. Forcing UDP within Windows causes an error. The PIX doesn't allow the UDP traffic through since it didn't originate from the inside. Outside the firewall UDP only works if I force it. TCP is the default. First, is UDP the best way to do this or is TCP ok since it is comming from the Cache engine? Second, how can I change the Cache engine setup to default to UDP or is this not possible?
  Thank you,
  Hampton Saussy
  Midlands Technical College

  We had a similar issue. If the firewall is not configured to accept TCP ports, then the streaming video server will perform HTTP cloaking i.e Instead of using the TCP ports it will use HTTP port 80 to get through the firewall, then the server sends the streaming video data via UDP. If UDP cannot pass through the firewall, the client requests delivery via TCP. The fixup rtsp command lets PIX Firewall pass RTSP (Real Time Streaming Protocol) packets. This command does not fix RTSP UDP connections. So I guess using TCP is a better option.

• Question about connection between cache engine and cat6k

  Dear sir,
  Here is the problem description, please give me some help, thank you so much:
  catalyst 6509 is enable for wccp v2.CE 7320 also enable the wccp v2.Wccp service 91 is configured on 6509.Service-munber 91 and port-list 1(with port number 8080) are also configured on CE 7320.Wccp communicates well about service number 91.
  but browsing web page with port number 8080 gets always failed.
  1.6509 wccp configuration:
  ip wccp web-cache redirect-list 30
  ip wccp 91
  interface Vlan10
  ip address 211.162.224.2 255.255.255.240
  ip wccp web-cache redirect out
  ip wccp 91 redirect out
  2.ce7320 wccp configuration:
  wccp router-list 1 211.161.1.49
  wccp port-list 1 8080
  wccp web-cache router-list-num 1
  wccp service-number 91 router-list-num 1 port-list-num 1 application cache
  wccp version 2
  3.show info. from 6509 and ce 7320:
  gwbn7320#sh wccp content-engines
  Content Engine List for Service: Web Cache
  IP address = 211.161.1.50
  Routers seeing this Content Engine(1)
  211.162.224.2
  Content Engine List for Service: WCCPv2 Service 91
  IP address = 211.161.1.50
  Routers seeing this Content Engine(1)
  211.162.224.2
  gwbn7320#sh statistics http savings
  Statistics - Savings
  Requests Bytes
  Total: 90685 460066803
  Hits: 936 162710
  Miss: 89749 459904093
  Savings: 1.0 % 0.0 %
  6509-left#sh ip wccp
  Global WCCP information:
  Router information:
  Router Identifier: 211.162.224.2
  Protocol Version: 2.0
  Service Identifier: web-cache
  Number of Cache Engines: 1
  Number of routers: 1
  Total Packets Redirected: 2525
  Redirect access-list: 30
  Total Packets Denied Redirect: 0
  Total Packets Unassigned: 146
  Group access-list: -none-
  Total Messages Denied to Group: 0
  Total Authentication failures: 0
  Service Identifier: 91
  Number of Cache Engines: 1
  Number of routers: 1
  Total Packets Redirected: 0
  Redirect access-list: -none-
  Total Packets Denied Redirect: 0
  Total Packets Unassigned: 0
  Group access-list: -none-
  Total Messages Denied to Group: 0
  Total Authentication failures: 0
  Regards,
  Sha

  Gilles,
  Thank you!
  Here is the result:
  6509-left#sh ip wccp 91 detail
  WCCP Cache-Engine information:
  IP Address: 211.161.1.50
  Protocol Version: 2.0
  State: Usable
  Redirection: GRE
  Initial Hash Info: 00000000000000000000000000000000
  00000000000000000000000000000000
  Assigned Hash Info: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
  FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
  Hash Allotment: 256 (100.00%)
  Packets Redirected: 180
  Connect Time: 00:07:06
  Regards,
  Sha

• Cache Engine 510

  Hi ,
  We have purchased a cache engine 510 and are going to be deploying it in a transparent caching scenario. Where is the optimal place to put the cache engine, on the inside network behind firewall or on outside. If placed on the outside of the firewall what conduits/access lists need to be put in place for the solution to work.
  I have been trying to find a good document on how the WCCP protocol works with regards to how the source/destination addresses change when a router redirects traffic to a cache engine to better understand what rules need to be changed on the firewall. Any pointers to a good reference URL will be greatly appreciated.

  to understand the log message, please look into :
  http://www.cisco.com/en/US/products/hw/contnetw/ps546/products_tech_note09186a00800a5fe1.shtml
  If you have only one router, you don't have the choice of the location.
  Put your Cache in the same subnet as the router and the firewall.
  Finally, you can't view object that were cached.
  Gilles.

• I still cannot sign into eprint center despite everything, always an error with my private email

  address. i see that this has been a familiar and very frustrating issue for many. i read that i am not suppose to sign in with the printer email address so I don't know what to do. I registered it with private email, somewhere along the line i think it was switched to default but who knows. Regardless, it won't let me set up an account with my private email because its "in use". well yes its mine but its not "in use" for sure. I have read so much last night and now more hours tonight. I do know that we are not suppose to use the random printer email address to sign in so i dont know what to do. just seems ridiculous that this is so complicated. my whole intent is to change my printer email to something more user friendly, see what apps people really like to use that i can add...... but left at the door. HP? someone smart? please help......

  I was able to use eprint center, but my personal email address didn't work, same as yours. I never saw instructions to not use the random printer email address, and I finally tried that and it worked. The email address was the Printer Code @hpeprint.com. Once I got in like that, it let me create a nicer email address for my printer, but the suffix is still @hpeprint.com. I have not been able to use my personal address in the eprint center, so I guess it really wants the printer's email address. I hope this helps you!

• When I go to google on firefox and search for a topic, I try to open a website and another website (morsearch, clickkick, etc) will open up instead into a new search engine with the same topic . What is this?

  I go to google. I type in "plants". A lot of sites will pop up in google. I click on a site (does not matter which usually). The site will then start to switch to a new url from (click kick, morsearch, etc) turning into a new search engine with the same topic and more options. I never get to the page I want unless I type the url directly into the address box. It always comes back with a search engine. So far I have found this only happens while starting in a search engine. When I get into the actual page, everything is fine. I am using McAfee for security and it hasn't caught a virus or anything yet. Help please! Thanks!

  Install, update, and run these programs in this order. They are all free for personal use, but some have limited functionality in the "free mode" - but those are features you really don't need to find and remove the problem that you have. <br />'''''(Not all programs detect the same Malware.)'''''
  Malwarebytes' Anti-Malware - [http://www.malwarebytes.org/mbam.php] <br />
  SuperAntispyware - [http://www.superantispyware.com/] <br />
  AdAware - [http://www.lavasoftusa.com/software/adaware/] <br />
  Spybot Search & Destroy - [http://www.safer-networking.org/en/index.html] <br />
  If these don't find it or can't clear it, post in one of these forums for specialized malware removal help: <br />
  [http://www.spywarewarrior.com/index.php] <br />
  [http://forum.aumha.org/] <br />
  [http://www.spywareinfoforum.com/] <br />
  [http://bleepingcomputer.com]

• How do I install a new Exchange account with the same address as my old Exchange account and have my bcc mail not go to the old account?

  I have an iPhone 5s running iOS8 and an iPad, up to date.  I have recently changed my mail server but not my email address.  My "old" mail account is an Exchange account and I have also set up a "new" Exchange account with the same address but with the new mail server details.  When I receive outside, third party emails they are routed correctly to the "new" Exchange account but when I bcc myself or receive other emails from any account with my domain name the emails are routed to my "old" Exchange account.  I have changed the default account settings to the "new" Exchange account.  Also, if I send myself an email from my laptop, through the new mail service provider, it is routed correctly on my laptop but incorrectly on my iPhone and iPad.  It appears as though the Apple products have cached my email address and routing and won't look to pick up the new mail server details. I don't see anything in the mail account settings or contacts that allows me to refresh or clear the cache.  The result is I now have mail in 2 accounts. If I can get the misdirected mail from the odl account to the new one I will then make the old account inactive.  Anyone have any ideas on this one?
  Thanks in advance for your time and ideas,
  DAA

  Can you set up a rule in your old account to forward mail to your new account and then delete it from the old account?
  (1012)