Content Engine and L4 Switches
I am network administrator in a big company, the case is as follows:
I have a new Content Engine 590 and I want not to use wccp, I will buy a new cisco L4 switch and want to use it with the engine, some one told me that it is not supported by my engine, is that true or not???
I have a cisco router and I can use wccp but papers from different web sites writes that L4 switching performance is better, is that true???
thanks
A. F.
The feature is code-specific, and the content engine will support L4 switch forwarding. You might want to look at this document to see the sample configuration for this. If you scroll passed the CSS config you will see what the CE configuration will look like.
http://www.cisco.com/warp/public/117/CSS_CEreverseproxy.html
If you weren't interested inL3 WCCP on your gateway router and wanted performance, you might want to look into the L2/mac re-write redirections you can do with a Cat 6K and a CE:
http://www.cisco.com/warp/customer/117/wccp_redirects.html
Cheers,
Perry.
Similar Messages
-
Wacky integration of PIX,Content engine and router
Dear All,
I have got a situation...The situation is
that I have a pix515e, Content Engine and
Cisco 2620xm router...The 3 attachments contain each of the systems configuration..They are arranged in the following way..
There is a 192.168.0.0 network ID running on the PIX inside network which is getting translated by pix to 172.16.1.11-172.16.2.254. The e0 of pix has got an IP address of 172.16.1.7. PIX firewall's gateway is the router's ethernet interface which is 172.16.1.3. I have allowed tcp etc traffic for the inside network.
After PIX there is a content engine 565A which is getting connected via its gigabit interface with IP address of 172.16.1.2 to the network with wccp config.
The router is running 172.16.1.3 on its ethernet interface with the wccp configuration on WAN facing interface..
The problem is that I am able to access the Internet from inside of the PIX.. The PIX is translating perfectly...When the traffic reaches the router, it also translates into public addresses perfectly..The user's are accessing Internet without any problem..and i can see the nat maintained on router and pix..
But the problem is that when i write sh wccp gre on content engine, it doesn't show any activity..This is the problem that content engine is not responding the way it should..
Right now I am lost why the CE isn't working... If anyone has faced this scenerio before then any help will be greatly appreciated...
Hoping for a response which resolves this...
Regards,
Noman BariDear Joerg,
Thank you for your response... That night when I had posted my request for help, I went back to my hotel room, took a shower and focused on CE and router communication and what was configured on them (by some another consultant)...
And then it struck to me that wccp was never enabled on the router in the global config(see the router config in my 1st posting)... once this glitch was removed, everthing now works .. This was never a pix issue bcuz I could see that it was working the way its suppose to work,xlating was happening, people were surfing the web and stuff but the show commands on CE and router weren't showing any activity..
The following link on configuring Cisco Cache Software helped me enormously and I recommend to everyone working on CE..
http://www.cisco.com/en/US/products/sw/conntsw/ps547/products_configuration_guide_book09186a0080087140.html
Through this process I learned a very important lesson though...when you are troubleshooting a problem, never trust the configurations that have been done by the guy before you...start everything from the scratch by going through the documentation..
and ofcourse this extremely useful Cisco Forum also...
Regards,
Noman Bari -
Content Engine and PHP WebSites
Hi,
I have Content Engines in a transparent caching scenario. The HTPP traffic being redirected to the CEs are from squid proxies.
Sometimes, for php written sites, when the client tries to access the website or a particular link in a website, instead of getting the site content he gets a popup window asking if he wants to save the content or cancel the operation.
I noticed that this problem does not happen if I force the client browsers to use HTTP1.1 through proxy connections or if ... I clear the cache content (the content engine content).
If I access these sites using a dial-up line this problem doesn't happen. Only from the customer network, where I deployed the transparent caching solution does this happen.
Does anyone have a clue regarding this issue?
Thanks in advance for your attention.
Regards,
RicardoThanks for your reply.
I do not have any rules applied on the CE configuration.
After looking to some sniffer traces I took I suspect that my problem is related with the fact that I have requests made with browsers configured for HTTPv1.0 through proxy connections and others HTTPv1.1 through proxy connections.
When a client browser makes the request using HTTPv1.1 through proxy connections the content will be cached in encoded gzip format.
At a later time when another client, this time using HTTPv1.0 through proxy connections, tries to access the same content the content engine will deliver it encoded ... but the browser does not support it, and a pop-up window appears asking if the user wants to save the content.
So, now I suspect that this has nothing to do with the site itself but only with the requests and responses.
The clients are behind squid proxies.
It is the traffic originated by the squid proxy that is being redirect trough WCCP to the content engine.
I will do additional tests and try to find a way to solve this issue.
Once again Thanks for your reply.
I've you have any additional comments, feel free!
I need it :)
Ricardo -
I have 2 catalyst 6506 and 2 cache engines. Want to achieve transparent caching(Client have proxy setting on the IE)
I have configured exactly what the user guide has shown.
But I cant see the http traffic begin re-direct to Content Engine.
The http traffic go out directly to the proxy server.
Attached is the config file for one of the content engine and one of the catalyst 6506.The configuration looks ok to me. You could probably turn on some debugs to see what is happening. Also check the cache engine status. You could use the commands in this document to help you.
http://www.cisco.com/en/US/products/hw/contnetw/ps546/products_configuration_example09186a00801854c4.shtml -
Content Engine multicast duration logs
With Content Engines and CDN solution, we deployed a multicast station (for non-live contents). With the transaction logs we were able to log access to the first connection to the content-engine (as a http connection) but for our customer would be useful being able to track connection time of each client to the multicast station. There's a way to handle this?
ThanksWell I am not sure if this is possible. You could however check the URL that the CE is caching. Here is the link to a document that explains how to do it.
http://www.cisco.com/en/US/products/hw/contnetw/ps546/products_tech_note09186a008009409e.shtml -
Content Engine + Barracuda Spyware firewall (transparent/intercept proxies)
Hello all.
We are trying to get our WAE-511 content engine and our Barracuda Spyware Firewall 310 to work together.
It seems they interfere with each other because they are both transparent (intercept?) proxies.
What would need to be done/configured (preferably in the Cisco CE) to make the two devices work together?
Would shifting the CE to non-transparent mode help?check out the following link, hope this helps :
http://www.cisco.com/en/US/products/ps6469/products_user_guide_chapter09186a00804a16ab.html -
I just started with a content engine and wanted to enable streaming media. Is there a way to enable streaming media?
Thanks for your help. here is some info:
Model: ce565
Version: Release 5.2.5 (build b9) -
Can we place content engine outside interface on PIX DMZ interface. At this moment both the WCCP router and content Engine are on outside. I want to place Content Engine Outside interface on PIX DMZ and then to run WCCP between Content Engine and Outside router.
Thank you.Yes. You can place the content engine towards the outside interface on PIX. This should work.
-
Content Engine transaction logs -- monitoring and analysis
At our remote sites there's a local Cisco CE511 to ease our WAN bandwidth. I have been tasked to find a method to gather CE usage for trending and troubleshooting.
From my search on the internet I decided to go with the Webalizer application. I setup the CEs to export their transaction logs every hour to my FTP server. After a test of Webalizer on a log file, it produced a nice HTML report for that hour.
I would like to discuss with anyone on bringing this up to a new level. I would like webalizer to run as a cron job, but the log file names changes every hour. So that's a hurdle I need to figure out. Also keeping track of user web hits is important. I would like to make sure my reports are accurate in reporting what IP address is the top talker.
I hope this will start a productive exchange of ideas. Thanks.Simple Network Management Protocol (SNMP) is an interoperable standards-based protocol that allows for external monitoring of the Content Engine through an SNMP agent.
An SNMP-managed network consists of three primary components: managed devices, agents, and management systems. A managed device is a network node that contains an SNMP agent and resides on a managed network. Managed devices collect and store management information and use SNMP to make this information available to management systems that use SNMP. Managed devices include routers, access servers, switches, bridges, hubs, computer hosts, and printers.
An SNMP agent is a software module that resides in a managed device. An agent has local knowledge of management information and translates that information into a form compatible with SNMP. The SNMP agent gathers data from the Management Information Base (MIB), which is the repository for information about device parameters and network data. The agent can also send traps, or notification of certain events, to the manager.
http://www.cisco.com/en/US/products/sw/conntsw/ps491/products_configuration_guide_chapter09186a0080236630.html#wp1101506 -
Content switch & Content Engine
The documentation for COntent Engine says that it can interface with ICAP server to scan the incoming URL request. Is that possible to do the same on the CSS switches? if not what is the method you can use on CSS switches to be able to scan incoming URl request?
thanks in advance.Yes, you are right. The content engine can interface with ICAP server to scan the incoming URL request. On the CSS switches i think it is possible. But personally i have not tried it out.
-
Saturation on Content engine CE-565 and Smartfiler log
Hi, with content engine CE-565-K9
we have the following message log on the smartfilter:
"Jun 25 08:19:03 cer44sec-pxy2.cer44.recouv cache: %CE-UNKNOWN-4-899999: too many jobs in plugin thread pool queue (1001). Maximum allowed is: 1000
Jun 25 08:19:03 cer44sec-pxy.cer44.recouv cache: %CE-UNKNOWN-3-899999: Failed to start job to look up groups for user 'UR49100640'"
I can't see how is limited the thread number on the CE565. So who can explain to me the signification of this log and/or how configring the maximun thread on the CE565.
Thank's
MichelSmartfilter uses a pool of 20 threads for LDAP lookups. What this error indicates is that the number of outstanding LDAP requests has grown to more than 1000 which is the limit supported.
-
Mozilla has switched off content blocker and URL advisor for Kapersky and I cannot browse the web
How do I turn these back on?
It appears that the problem is that the Kaspersky components are outdated an needing action from Kaspersky. I have not the time to research this myself at the moment, but you may be able to do so your self on their support site.
What do you mean by you cannot browse the web.
What are the content blocker and URL advisor intended to do ? They may well be largely unnecessary and superfluous. Is just installing them blocking you from using Firefox ? If so uninstall them until Kaspersky has a fix.
Please also look at this thread
* [/questions/975869] <br /> (With Windows 7 it would be similar advice) concluding:
''Firefox doesn't have any known compatibility issues with any of the major anti-virus suites, but honestly you are wasting your money if you pay for them. Uninstall them and use Window 8's built in Windows Defender. Update your Windows 8 machines to Windows 8.1, and make sure your win 7 machine is up to date, and always keep everything on your machines (Firefox, plugins, etc.) all up to date. That will keep you secure as possible. ''
* From Windows Microsoft see http://windows.microsoft.com/en-gb/windows/security-essentials-download (That '''explains''' about MSE it does NOT automatically download anything )
Note
(But Quotation above is from Tyler who IS professional paid Mozilla Firefox support staff)
The people who answer questions here, for the most part, are other Firefox users volunteering their time (like me), not Mozilla employees or Firefox developers.
If you want to leave feedback for Firefox developers, you can go to the Firefox ''Help'' menu and select ''Submit Feedback...'' or use [https://input.mozilla.org/feedback this link]. (You'll need to be on the latest version of Firefox to submit feedback). Your feedback gets collected at http://input.mozilla.org/, where a team of people read it and gather data about the most common issues. -
Dear All,
My apologies if this posting is on the wrong board.
I've a problem with our content engine returning an error of:
"Tre reply from server is not valid"
The URL of the site is http://hiring.monster.co.uk/jobs/createtitle.aspx?mode=qb.
I've attached a screenshot of the error message.
Any advice or help would be greatly appreciated.
Thank you in advance.
SinhThis symptom is observed on a router on which Web Cache
Communication Protocol (WCCP) is enabled and Cisco Express Forwarding (CEF)
switching is disabled. If the caches are Cisco caches, they will be running
software prior to ACNS 4.2.5.
solution: Ensure that CEF switching is enabled on the router. If this is not possible, the impact of the problem on the cache will be minimized if the authentication bypass function is disabled.also try upgrading IOS to 12.1(18.01)E which may solve the issue. -
Content Engine caching video content?
I am currently running ACNS version 5.5.11.2 on a CE510 Content Engine. I recently had to replace the unit and when I set up the partitions for the new build, I elected to go with CE510#disk config sysfs 10% cfs 45% mediafs 45%.
Before the cfs was setup to use the whole box. I was thinking that the mediafs partition would start to cache video content. Does that happen automatically or is there some other setting to make that happen further. How do I determine if it is getting any use?A content engine can cache files transfered via ftp but not https [as the content is encrypted].
It can cache whatever file, including video, audio, ...
Content routing, content switching are just names.
They refer to how the traffic will be intercepted and forwarded to the content engine.
You could simply use a proxy solution and have your users setup their browser to use the content engine as a proxy, or you could transparently intercept http/ftp traffic via a router running wccp, or you could use a Layer7 device like a CSS to intercept the traffic and redirect to the content engine.
Regards,
Gilles. -
Hi
I have a content engine ,its uses for transprancy proxy.
i have two router .one router used for lan and remote connect(wccp enable) and another router connect only for internet.
as example:
router1:203.110.153.10
content engine:203.110.153.11
internet router(inside interface): 203.110.153.12
now router1 gateway 203.110.153.12
and content engine gw:203.110.153.12
I confirure router1 that all http request redirect out to content engine.
router1,contentengine and inside interface of internet router connect same switch cisco 3550.
now problem is::
when content engine not connected then the switch port which connect router1 data transfer 3Mb input/output.
but when content engine connected ,then the switch port of content engine shows 4Mb data Input/output.
I think data transfer increase becuse content engine internal communication with router1 and also internet router.
am i right ?. or if i use transparent proxy then bandwith increase ?.
pls anyone help me ?.
thanks
biplobHello Biplob,
as a matter of fact, the CE is supposed to actually decrease the amount of bandwidth...
You say that data throughput goes up to 4MB, is that only right after you connect the Content Engine, or does it stay at that increased level ? In the first case, that could probably be explained by the CE starting to fill its cache. In the latter, you could try and turn on 'ip accounting' on the interface connecting router 1 to the 3550. The IP accounting data should at least tell you the source and destination of the increased traffic...
Regards,
GP
Maybe you are looking for
-
Horizontal scrol bar for combo bos in JSP
How do I force a horozontal scroll bar on a list box?
-
How to find my laptop 13"
-
With the USER DATA object in VC, I am able to get a list of user attributes available to the model (uniquename, first name, last name, address etc). One of the attributes we want is currently not in the list that shows up OTB. How can I add more LDAP
-
Photos woun't sync when videos in directory
When syncing my iPad (iOS 5) with iTunes for Windows photos will not sync if a video (avi) is in the diretory (or subdirectory) to be syncted. Any solution or work around to that (except for removing the videos)?
-
Autosave vault won't take serial number
FCP 7 is second language to me after Avid. Trying to access a backup of a project. On opening, I get a box asking for name and serial number. Put it in, I get a message saying that the number is invalid, and then a crash message that Final Cut Expr