Enabling WCCP v2 security on the router

If you are running WCCP v2, you can enable security on the Content Gateway node so that the proxy and your routers can authenticate each other. You must individually enable security for each service group that the router supports. You cannot configure a router globally as you would Content Gateway.

You enable the security option and provide the authentication password in the Content Gateway manager.

The authentication password you specify must match the authentication password configured on the router for each service group being intercepted. The following procedure provides an example of how to set an authentication password for different service groups.

Steps

  1. Telnet to the router and switch to Enable mode.
  2. At the prompt, enter the following command to configure the router from the terminal:
    configure terminal
  3. If you defined a password when you enabled WCCP on the router, skip to step 4. Otherwise, enter the following command for each service group that the router intercepts:

    <hostname>(config)# ip wccp <service_group> password <pwd>

    Here, <hostname> is the host name of the router you are configuring, <service_group> is the service group ID (for example, 0 for HTTP), and <pwd> is the password you want to use to authenticate Content Gateway. This password must match the password you specify in the Content Gateway configuration for this service group.

  4. Exit and save the router configuration.