Are your ipfw rules blocking UDP? If so, you would need to add rules to
allow WCCP's UDP protocol to talk to the router, like this:
ipfw add allow udp from any 2048 to me dst-port 2048
ifpw add allow udp from me 2048 to any dst-port 2048
What does "sockstat | grep squid" show? There should be line like:
webcache# sockstat | grep squid
...
squid squid 1869 10 udp4 10.10.10.250:2048 10.10.10.1:2048
...
that shows that squid is communicating with the router (my router
identifier's IP address is 10.10.10.1 in this example).
Guy
Alexandre Correa wrote:
> Hello,
>
> i´m having problems to setup wccp with squid and freebsd,
>
> my setup:
>
> router:
> !
> !
> ip wccp web-cache
> interface Loopback0
> ip address 10.254.254.2 255.255.255.255
> !
> interface FastEthernet0/0/0
> description *** lan to clients ***
> ip address 189.x.x.1 255.255.255.0
> ip wccp web-cache redirect in
> ..
> ..
>
>
> squid.conf
> http_port 3128 transparent
>
> wccp2_router 10.254.254.2
> wccp2_forwarding_method 1
> wccp2_return_method 1
> wccp2_service standard 0
>
>
> freebsd:
> bge0: 189.x.x.3
> ifconfig gre0 create inet 189.x.x.3 10.254.254.1 netmask
> 255.255.255.255 link2 tunnel 189.x.x.3 10.254.254.2 up
>
> ipfw list:
> 01000 fwd 127.0.0.1,3128 tcp from any to any dst-port 80 recv gre0
> 65535 allow ip from any to any
>
>
> #sh ip wccp
> Global WCCP information:
> Router information:
> Router Identifier: 10.254.254.2
> Protocol Version: 2.0
>
> Service Identifier: web-cache
> Number of Cache Engines: 0
> Number of routers: 0
> Total Packets Redirected: 0
> Redirect access-list: -none-
> Total Packets Denied Redirect: 0
> Total Packets Unassigned: 0
> Group access-list: -none-
> Total Messages Denied to Group: 0
> Total Authentication failures: 0
>
>
> #sh ip wccp web-cache detail
> WCCP Cache-Engine information:
> Web Cache ID: 10.254.254.1
> Protocol Version: 2.0
> State: NOT Usable
> Initial Hash Info: 00000000000000000000000000000000
> 00000000000000000000000000000000
> Assigned Hash Info: 00000000000000000000000000000000
> 00000000000000000000000000000000
> Hash Allotment: 0 (0.00%)
> Packets Redirected: 0
> Connect Time: 00:00:08
>
>
> ifconfig gre0
> gre0: flags=d051<UP,POINTOPOINT,RUNNING,LINK0,LINK2,MULTICAST> mtu 1476
> tunnel inet 189.x.x.3 --> 10.254.254.2
> inet 189.x.x.3 --> 10.254.254.1 netmask 0xffffffff
>
>
>
> someone can say where i´m mistaking ?!
>
> thanks !!!
>
> regards,
>
>
> Sds.
> Alexandre J. Correa
> Onda Internet / OPinguim.net
> http://www.ondainternet.com.br
> http://www.opinguim.net
>
-- Guy Helmer, Ph.D. Chief System Architect Palisade Systems, Inc.Received on Thu Jul 17 2008 - 14:34:01 MDT
This archive was generated by hypermail 2.2.0 : Thu Jul 17 2008 - 12:00:04 MDT