i have a cisco 3640 router doing wccp redirection to a squid proxy server. is there some way i can restrict the redirection to a certain set of networks - ie
networks served by router 172.16.0.0/16 192.168.0.0/23 right now all http requests get redirected to proxy. i would like for http requests from 172.16.0.0/16 to be redirected to proxy and http requests from 192.168.0.0/23 not to be redirected to proxy. im thinking i could do something with access-lists and such but not quite sure about syntax. i know this much: i need the following ip wccp web-cache redirect-list 101 and then an acl 101 like ???????????????????????????????????????????????????????? access-list 101 permit ip 172.16.0.0 0.0.255.255 any access-list 101 deny ip any any or access-list 101 deny ip 192.168.1.0 0.0.254.255 any access-list 101 permit ip any any ???????????????????????????????????????????????????????? but would doing that keep the 192.168.1.0 network from getting to the web. router has two ethernet interfaces and i have config as ip wccp version 1 ip wccp web-cache interface Ethernet0/0 ip address yyy.yyy.yyy.yyy ip access-group 120 in interface Ethernet0/1 ip address xxx.xxx.xxx.xxx ip access-group 120 in ip wccp web-cache redirect out eth0/1 is outward facing interface, eth0/0 is inward facing -- Chad Whitten Network/Systems Administrator neXband Communications [EMAIL PROTECTED] 601-944-4801
