Troubleshooting guide

ManualsBrandsCisco ManualsComputer equipmentWide Area Virtualization Engine 274

261

262

263

264

265

266

267

268

269

270

1-7

Cisco Wide Area Application Services Configuration Guide

OL-26579-01

Chapter 1 Creating and Managing IP Access Control Lists for WAAS Devices

List of Extended IP ACL Conditions

The only network interface properties that can be altered from the WAAS Central Manager GUI are

the inbound and outbound IP ACLs. All other property values are populated from the device

database and are read-only in the WAAS Central Manager GUI.

Step 11 Click Submit to save the settings.

Step 12 To use an IP ACL to define the traffic that should be intercepted, see the “Configuring Interception

Access Control Lists” section on page 1-28.

Step 13 (Optional) Delete an IP ACL:

a. Click the Edit icon next to the name of the device that has the IP ACL that you want to delete.

b. Choose Configure > Network > TCP/IP Settings > IP ACL.

c. Click the Edit icon next to the name of the IP ACL that you want to delete (for example, test1).

The Modifying IP ACL window appears. If you created conditions for the IP ACL, you have two

options for deletion:

–

Delete ACL—Removes the IP ACL, including all conditions and associations with network

interfaces and applications.

–

Delete All Conditions—Removes all the conditions, while preserving the IP ACL name.

d. To delete the entire IP ACL, click the large Trash (Delete ACL) icon in the taskbar. You are

prompted to confirm your action. Click OK. The record is deleted.

e. To delete only the conditions, click the small Delete All Conditions Trash/List icon in the taskbar.

When you are prompted to confirm your action, click OK. The window refreshes, conditions are

deleted, and the ACL Type field becomes available.

To define an IP ACL from the CLI, you can use the ip access-list global configuration command, and to

apply the IP ACL to an interface on the WAAS device, you can use the ip access-group interface

configuration command. To configure the use of an IP ACL for SNMP, you can use the snmp-server

access-list global configuration command. To specify an IP ACL that the WAE applies to the inbound

WCCP redirected traffic that it receives, you can use the wccp access-list global configuration

command. To configure an interception ACL, you can use the interception access-list global

configuration command.

List of Extended IP ACL Conditions

When you define a condition for an extended IP ACL, you can specify the Internet protocol to be applied

to the condition (as described in Step 7 in the “Creating and Managing IP ACLs for WAAS Devices”

section on page 1-2).

The list of extended IP ACL conditions are as follows:

• Generic (See Table 1-4.)

• TCP (See Table 1-5.)

• UDP (See Table 1-6.)

• ICMP (See Table 1-7.)