Back=right mouse click.
Log on to the NetCache console by opening http://{SERVER-IP}:3132 in a browser window.
Click Setup, then click ICAP > ICAP 1.0 on the left menu.
Click General, then select Enable ICAP Version 1.0.
Click Commit Changes.
Note: The error message “icap: This service is not licensed.” appears if you have not provided the required ICAP license key for NetCache.
Enter an ICAP license key:
Click Setup, and then click System > Licenses in the left menu. The System Licenses screen appears.
Type your license under the ICAP license section.
Select the Service Farms tab on the ICAP 1.0 screen, then click New Service Farm to add ICAP servers. Assign the service farm name in the Service Farm Name field.
For response mode, select RESPMOD_PRECACHE in the Vectoring Point field.
For request mode, select REQMOD_PRECACHE in the Vectoring Point field.
Select Service Farm Enable.
In the Load Balancing field, choose the proper algorithm to use for load balancing (if you have more than one ICAP server in the service farm). Clear Bypass on Failure.
Note: Disable Bypass on Failure if your priority is to limit virus propagation within your network. Otherwise, enable Bypass on Failure to guarantee an unblocked connection to the Internet.
Under the Consistency field, choose strong from the drop-down menu and leave the lbw Threshold field empty.
Note: For multiple ICAP servers within a service farm with strong consistency selected, make sure that all ICAP servers have identical intscan.ini and other configuration files and the same virus patterns. The service farm will not work properly if the ICAP servers have different configurations.
Under the Services text box (for response mode), type:
icap://{ICAP-SERVER-IP}:1344/RESP-Service on
where ICAP-SERVER-IP is the IP address of IWSVA ICAP for response mode.
For multiple IWSVA ICAP server services, type the additional entries for response mode:
icap://{ICAP-SERVER1-IP}:1344/resp on
icap://{ICAP-SERVER2-IP}:1344/resp on
Under the Services text box (for request mode), type:
icap://{ICAP-SERVER-IP}:1344/REQ-Service on
where ICAP-SERVER-IP is the IP address of IWSVA ICAP for request mode.
For multiple IWSVA ICAP server services, type the additional entries for request mode:
icap://{ICAP-SERVER1-IP}:1344/REQ-Service on
icap://{ICAP-SERVER2-IP}:1344/REQ-Service on
Click the Access Control Lists tab, then select Enable Access Control Lists.
Type “icap <Service Farm name of the ICAP Server> any” in HTTP ACL.
To configure scanning FTP over HTTP traffic, go to Access Control List and add “icap <service farm name>” into the FTP ACL field.
Flushing Existing Cached Content from the Appliance
Understanding Request and Response Mode Differences