(I just noticed that I forgot to publish this, so anyone reading my posts on IWAN deployment… Sorry this one’s a few years late…)
To get the WAAS deployment done there are a few prerequisites:
- Virtual Central Manager (vCM) deployed (at HQ)
- vWAAS appliance deployed (at HQ)
- vWAAS appliance deployed (at branch)
- WAN connectivity between branch and HQ
A couple things to be aware of right off the bad:
- Default username is: admin
- Default password is: default
- Telnet is enabled by default, and SSH is disabled.
- To enable SSH run these commands from a config prompt (make sure hostname and domain are set before running)
- sshd enable
- Telnet can be disabled, however, it seems the management software
- When logging into the web interface if there is a prompt to select an SSL certificate, click Cancel. That should bring up the login page.
After the OVA has been deployed you should be able to log into the appliance and it should automatically start the device configuration. If not simply enter the ‘setup’ command.
The setup between the vCM and vWAAS is pretty similar, so I’m just going to go over the vWAAS as there are more of those. However, the vCM does need to be configured before the vWAAS, as the vWAAS needs to connect to the vCM.
The setup is text-based, and pretty straightforward. One thing to be aware of is if the CMS service fails to start (I set up vWAAS up without setting the correct vNIC settings) you can run the command ‘cms enable’ from a config prompt. That should force the vCM to start, or force a vWAAS appliance to register with the vCM.
After completing the setup a window will pop up with a list of commands to configure WCCP on the router.
To make things easier, here’s a text version of the commands:
ip wccp version 2
ip wccp 61 (optional:waas-wccp-redirect-list)
ip wccp vrf IWAN-PRIMARY/SECONDARY 62 (optional:waas-wccp-redirect-list)
interface (Router LAN interface(s))
ip wccp 61 redirect in
interface (Router WAN interface(s))
ip wccp vrf IWAN-PRIMARY/SECONDARY 62 redirect in
interface (Router NM-WAE interface)
ip wccp redirect exclude in
ip acces-list extended waas-wccp-redirect-list
One thing that isn’t covered in this default config is the ISR uses VRFs for the WAN interface(s). For the WAN interface enter the correct VRF and then the commands should work.