Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.2.1
Copy Link

Configure WCCP.

  config system wccp
      Description: Configure WCCP.
      edit <service-id>
          set router-id {ipv4-address}
          set cache-id {ipv4-address}
          set group-address {ipv4-address-multicast}
          set server-list {user}
          set router-list {user}
          set ports-defined [source|destination]
          set server-type [forward|proxy]
          set ports {user}
          set authentication [enable|disable]
          set password {password}
          set forward-method [GRE|L2|...]
          set cache-engine-method [GRE|L2]
          set service-type [auto|standard|...]
          set primary-hash {option1}, {option2}, ...
          set priority {integer}
          set protocol {integer}
          set assignment-weight {integer}
          set assignment-bucket-format [wccp-v2|cisco-implementation]
          set return-method [GRE|L2|...]
          set assignment-method [HASH|MASK|...]
          set assignment-srcaddr-mask {ipv4-netmask-any}
          set assignment-dstaddr-mask {ipv4-netmask-any}
      next
  end

config system wccp

Parameter Name Description Type Size
router-id IP address known to all cache engines. If all cache engines connect to the same FortiGate interface, use the default 0.0.0.0. ipv4-address Not Specified
cache-id IP address known to all routers. If the addresses are the same, use the default 0.0.0.0. ipv4-address Not Specified
group-address IP multicast address used by the cache routers. For the FortiGate to ignore multicast WCCP traffic, use the default 0.0.0.0. ipv4-address-multicast Not Specified
server-list IP addresses and netmasks for up to four cache servers. user Not Specified
router-list IP addresses of one or more WCCP routers. user Not Specified
ports-defined Match method.
source: Source port match.
destination: Destination port match.
option -
server-type Cache server type.
forward: Forward server.
proxy: Proxy server.
option -
ports Service ports. user Not Specified
authentication Enable/disable MD5 authentication.
enable: Enable MD5 authentication.
disable: Disable MD5 authentication.
option -
password Password for MD5 authentication. password Not Specified
forward-method Method used to forward traffic to the cache servers.
GRE: GRE encapsulation.
L2: L2 rewrite.
any: GRE or L2.
option -
cache-engine-method Method used to forward traffic to the routers or to return to the cache engine.
GRE: GRE encapsulation.
L2: L2 rewrite.
option -
service-type WCCP service type used by the cache server for logical interception and redirection of traffic.
auto: auto
standard: Standard service.
dynamic: Dynamic service.
option -
primary-hash Hash method.
src-ip: Source IP hash.
dst-ip: Destination IP hash.
src-port: Source port hash.
dst-port: Destination port hash.
option -
priority Service priority. integer Minimum value: 0 Maximum value: 255
protocol Service protocol. integer Minimum value: 0 Maximum value: 255
assignment-weight Assignment of hash weight/ratio for the WCCP cache engine. integer Minimum value: 0 Maximum value: 255
assignment-bucket-format Assignment bucket format for the WCCP cache engine.
wccp-v2: WCCP-v2 bucket format.
cisco-implementation: Cisco bucket format.
option -
return-method Method used to decline a redirected packet and return it to the FortiGate.
GRE: GRE encapsulation.
L2: L2 rewrite.
any: GRE or L2.
option -
assignment-method Hash key assignment preference.
HASH: HASH assignment method.
MASK: MASK assignment method.
any: HASH or MASK.
option -
assignment-srcaddr-mask Assignment source address mask. ipv4-netmask-any Not Specified
assignment-dstaddr-mask Assignment destination address mask. ipv4-netmask-any Not Specified

Configure WCCP.

  config system wccp
      Description: Configure WCCP.
      edit <service-id>
          set router-id {ipv4-address}
          set cache-id {ipv4-address}
          set group-address {ipv4-address-multicast}
          set server-list {user}
          set router-list {user}
          set ports-defined [source|destination]
          set server-type [forward|proxy]
          set ports {user}
          set authentication [enable|disable]
          set password {password}
          set forward-method [GRE|L2|...]
          set cache-engine-method [GRE|L2]
          set service-type [auto|standard|...]
          set primary-hash {option1}, {option2}, ...
          set priority {integer}
          set protocol {integer}
          set assignment-weight {integer}
          set assignment-bucket-format [wccp-v2|cisco-implementation]
          set return-method [GRE|L2|...]
          set assignment-method [HASH|MASK|...]
          set assignment-srcaddr-mask {ipv4-netmask-any}
          set assignment-dstaddr-mask {ipv4-netmask-any}
      next
  end

config system wccp

Parameter Name Description Type Size
router-id IP address known to all cache engines. If all cache engines connect to the same FortiGate interface, use the default 0.0.0.0. ipv4-address Not Specified
cache-id IP address known to all routers. If the addresses are the same, use the default 0.0.0.0. ipv4-address Not Specified
group-address IP multicast address used by the cache routers. For the FortiGate to ignore multicast WCCP traffic, use the default 0.0.0.0. ipv4-address-multicast Not Specified
server-list IP addresses and netmasks for up to four cache servers. user Not Specified
router-list IP addresses of one or more WCCP routers. user Not Specified
ports-defined Match method.
source: Source port match.
destination: Destination port match.
option -
server-type Cache server type.
forward: Forward server.
proxy: Proxy server.
option -
ports Service ports. user Not Specified
authentication Enable/disable MD5 authentication.
enable: Enable MD5 authentication.
disable: Disable MD5 authentication.
option -
password Password for MD5 authentication. password Not Specified
forward-method Method used to forward traffic to the cache servers.
GRE: GRE encapsulation.
L2: L2 rewrite.
any: GRE or L2.
option -
cache-engine-method Method used to forward traffic to the routers or to return to the cache engine.
GRE: GRE encapsulation.
L2: L2 rewrite.
option -
service-type WCCP service type used by the cache server for logical interception and redirection of traffic.
auto: auto
standard: Standard service.
dynamic: Dynamic service.
option -
primary-hash Hash method.
src-ip: Source IP hash.
dst-ip: Destination IP hash.
src-port: Source port hash.
dst-port: Destination port hash.
option -
priority Service priority. integer Minimum value: 0 Maximum value: 255
protocol Service protocol. integer Minimum value: 0 Maximum value: 255
assignment-weight Assignment of hash weight/ratio for the WCCP cache engine. integer Minimum value: 0 Maximum value: 255
assignment-bucket-format Assignment bucket format for the WCCP cache engine.
wccp-v2: WCCP-v2 bucket format.
cisco-implementation: Cisco bucket format.
option -
return-method Method used to decline a redirected packet and return it to the FortiGate.
GRE: GRE encapsulation.
L2: L2 rewrite.
any: GRE or L2.
option -
assignment-method Hash key assignment preference.
HASH: HASH assignment method.
MASK: MASK assignment method.
any: HASH or MASK.
option -
assignment-srcaddr-mask Assignment source address mask. ipv4-netmask-any Not Specified
assignment-dstaddr-mask Assignment destination address mask. ipv4-netmask-any Not Specified