having some trouble getting wccp and squid working in a particular case. its
not really a squid issue but more wccp and iptables but i was hoping someone
here might could help
setup
web
/ \
router proxy
| |
switch
|
client
the router and proxy server both have a public interface (e0/0 and eth0) and a
private interface (fa1/0 and eth1). client is on private network
(172.16.0.0/24)
i compiled squid with netfilter support, took a config from another working
wccp/squid setup i have (albeit a bit different).
wccp router in squid.conf is set to the private ip of router - 172.16.0.1
sho ip wccp web-cache detail on router shows
router#sho ip wccp web-cache detail
WCCP Cache-Engine information:
IP Address: 172.16.0.12
Protocol Version: 0.4
State: Usable
Initial Hash Info: 00000000000000000000000000000000
00000000000000000000000000000000
Assigned Hash Info: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
Hash Allotment: 256 (100.00%)
Packets Redirected: 3
Connect Time: 14:28:54
my iptables rules are
iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port
3128
im not doing nat/masquerading anywhere
on the router i have an access-list like
access-list 120 permit ip 172.16.0.0 0.0.255.255 any
access-list 120 deny ip any any
then
ip wccp version 1
ip wccp web-cache redirect-list 120
ive checked my acls in squid.conf and they are okay.
ive tried applying the command
ip wccp web-cache redirect out
to each interface on the router and neither one gets any packets to the squid
proxy.
-- Chad Whitten Network/Systems Administrator neXband Communications cwhitten@nexband.com 601-944-4801 Phone 601-714-5012 FaxReceived on Wed Apr 23 2003 - 06:44:11 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:15:14 MST