5 Replies Latest reply on Jun 7, 2016 8:49 AM by Troja

    WCCP configuration with MWG

    mystic34

      Hello,

       

      I have a quick question. I'm a network engineer and don't deal much on our Network security side. Right now we have a cluster of MWG's sitting behind an F5 being load balanced with a  VIP. All of our Domain Machines are using Group Policy explicit Policy which tells the browser anything 80/443 to be filtered by the MWG.

       

      Anything non domain/non windows such as Medical devices use WCCP to route their 80/443 from my campus edge routers to the MWG to be filtered. This has been working great for a while and over the years our InfoSec team has whitelisted sites on both domain and non domain sites with no issue.

       

      Recently non domain devices which are using WCCP, can't white list certain sites and can't figure out why. The only way to get around it and the correct way to do this per mcafee is to create a WCCP rule having that specific IP bypass the site or IP address it's trying to reach. This is begging to be an admin nightmare.

       

      Does this make sense to anyone? Is what McAfee telling me accurate? This has never been an issue in almost 2 years of deployment.

       

      Thanks in advance for the Feedback