I just loaded squid-2.5.STABLE7 on an OpenBSD 3.6 machine. Squid seems to be
working fine when I setup a browser proxy directly to port 3128. However, I
am attempting to setup WCCP on the Cisco router(IOS 12.2) to redirect web
traffic to the Squid cache and have run into a bit of a problem.
The Cisco shows the squid cache is available and is communication with all
the normal HERE_I_AM/I_SEE_YOU messages. The WCCP counters are incrementing
when I try to hit a web site and I see the router is redirecting packets to
the cache but the access.log does not show the requests making it to Squid.
I am assuming that my port 80->3128 redirection or the GRE un-encapsulation
is not happening right.
Here is my PF translation rule:
rdr on fxp0 inet proto tcp from any to any port 80 -> 127.0.0.1 port 3128
I do have "net.inet.ip.forwarding=1" and "net.inet.gre.wccp=1" set. I have
compiled squid with the "enable-pf-transparent" option.
Here is a short snippet from a tcpdump of the router when trying to access a
web site via WCCP.
15:03:08.951713 207.19.167.199.2048 > cache1.metalink.net.2048: udp 64
15:03:19.140050 cache1.metalink.net.2048 > 207.19.167.199.2048: udp 52
15:03:19.141997 207.19.167.199.2048 > cache1.metalink.net.2048: udp 64
15:03:20.131678 gre-proto-0x883e (gre encap)
15:03:23.128623 gre-proto-0x883e (gre encap)
15:03:29.138911 gre-proto-0x883e (gre encap)
15:03:29.160045 cache1.metalink.net.2048 > 207.19.167.199.2048: udp 52
15:03:29.161871 207.19.167.199.2048 > cache1.metalink.net.2048: udp 64
Anyone, have any idea what I missed or am doing wrong?
Thanks in advance!
===
Eric Merkel
MetaLINK Technologies, Inc
Received on Mon Dec 06 2004 - 13:14:34 MST
This archive was generated by hypermail pre-2.1.9 : Sat Jan 01 2005 - 12:00:01 MST