[squid-users] wccp and squid

From: Chad Whitten <[email protected]>
Date: Wed, 23 Apr 2003 07:44:11 -0500

having some trouble getting wccp and squid working in a particular case. its
not really a squid issue but more wccp and iptables but i was hoping someone
here might could help

setup

                         web
                        / \
                  router proxy
                      | |
                       switch
                           |
                        client

the router and proxy server both have a public interface (e0/0 and eth0) and a
private interface (fa1/0 and eth1). client is on private network
(172.16.0.0/24)

i compiled squid with netfilter support, took a config from another working
wccp/squid setup i have (albeit a bit different).

wccp router in squid.conf is set to the private ip of router - 172.16.0.1
sho ip wccp web-cache detail on router shows
router#sho ip wccp web-cache detail
WCCP Cache-Engine information:
        IP Address: 172.16.0.12
        Protocol Version: 0.4
        State: Usable
        Initial Hash Info: 00000000000000000000000000000000
                               00000000000000000000000000000000
        Assigned Hash Info: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
                               FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
        Hash Allotment: 256 (100.00%)
        Packets Redirected: 3
        Connect Time: 14:28:54

my iptables rules are
iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port
3128

im not doing nat/masquerading anywhere

on the router i have an access-list like
access-list 120 permit ip 172.16.0.0 0.0.255.255 any
access-list 120 deny ip any any

then
ip wccp version 1
ip wccp web-cache redirect-list 120

ive checked my acls in squid.conf and they are okay.

ive tried applying the command
ip wccp web-cache redirect out
to each interface on the router and neither one gets any packets to the squid
proxy.

-- 
Chad Whitten
Network/Systems Administrator
neXband Communications
cwhitten@nexband.com
601-944-4801 Phone
601-714-5012 Fax
Received on Wed Apr 23 2003 - 06:44:11 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:15:14 MST