Symptom
Traffic gets wrongly redirected.
Programming of WCCP is wrong. Either the order of ACEs becomes wrong, or some ACEs get removed.
Check the "Conditions-Workaround" section of this DDTS for full details.
Conditions
When used with L2/L2/MASK with redirect in and redirect list has a entry whose conditions overlap with other Entries. Mostly seen with addition of "deny ip any any" at the end. Because deny ip any any is the superset of all the aces.
Check the "Conditions-Workaround" section of this DDTS for full details.
Workaround
remove "deny ip any any" from wccp redirect acl
remove "deny ip " which overlaps with the of other aces with permit.
Check the "Conditions-Workaround" section of this DDTS for full details.
Further Problem Description
