[squid-users] Problem

From: Darko Longin <[email protected]>
Date: Fri, 16 Dec 2005 09:04:17 +0000

Hi,

Any help greatly appreciated. The problem is as follows (I'm sorry
about the length of the message):

If we run squid without WCCP enabled (put the proxy's IP directly into
the browser) it works just fine. It proxies and caches without
problems and it writes it all to the log/cache files. When I enable
WCCP:

2005/12/16 08:26:12| Accepting HTTP connections at 0.0.0.0, port 8080, FD 12.
2005/12/16 08:26:12| Accepting ICP messages at 0.0.0.0, port 3130, FD 13.
2005/12/16 08:26:12| WCCP Disabled.
2005/12/16 08:26:12| Accepting WCCP v2 messages on port 2048, FD 14.
2005/12/16 08:26:12| Ready to serve requests.

...it works fine for few seconds UNTIL:

2005/12/16 08:26:43| Incoming WCCP2_I_SEE_YOU received id = 1475581.
2005/12/16 08:26:43| Incoming WCCP2_I_SEE_YOU member change = 236 tmp=236.
2005/12/16 08:26:48| WCCP2 Assigning Redirect
2005/12/16 08:26:54| Incoming WCCP v2 I_SEE_YOU length 144.
2005/12/16 08:26:54| Incoming WCCP2_I_SEE_YOU received id = 1475582.
2005/12/16 08:26:54| Incoming WCCP2_I_SEE_YOU member change = 0 tmp=236.
2005/12/16 08:26:54| Incoming WCCP2_I_SEE_YOU member change = 236.

...the redirect kicks in after which requests seem to get "lost". I
can see them going out through tcpdump but the browsing just times out
and nothing gets written in the logs:

08:21:20.538317 IP dhcp-128-142.xxx.xxx.xxx.4997 >
www25.thdo.bbc.co.uk.http: S 476170301:476170301(0) win 16384 <mss
1460,nop,nop,sackOK>
08:21:20.814924 IP pahproxy.xxx.xxx.xxx.2048 >
how6509-sw65-1.xxx.xxx.xxx.2048 : UDP, length 120
08:21:20.815280 IP how6509-sw65-1.xxx.xxx.xxx.2048 >
pahproxy.xxx.xxx.xxx.2048: UDP, length 152
08:21:21.136345 IP how6509-sw65-1.xxx.xxx.xxx > pahproxy.xxx.xxx.xxx:
GREv0, length 56: gre-proto-0x883e
08:21:21.136345 IP dhcp-129-176.xxx.xxx.xxx.49583 >
thames.empics.co.uk.http: S 4087269319:4087269319(0) win 32768 <mss
1460,wscale 0,nop>
08:21:21.219919 IP how6509-sw65-1.xxx.xxx.xxx > pahproxy.xxx.xxx.xxx :
GREv0, length 56: gre-proto-0x883e
08:21:21.219919 IP dhcp-133-116.xxx.xxx.xxx.miroconnect >
ad.adtech.de.http: S 1265486987:1265486987(0) win 65535 <mss
1460,nop,nop,sackOK>
08:21:21.235035 IP how6509-sw65-1.xxx.xxx.xxx > pahproxy.xxx.xxx.xxx:
GREv0, length 56: gre-proto-0x883e
08:21:21.235035 IP dhcp-133-116.xxx.xxx.xxx.virtual-places >
80.243.40.241.http: S 1265544079:1265544079(0) win 65535 <mss
1460,nop,nop,sackOK>

Any ideas?! I know there is not much to go by but did anyone
experience this before?! What would (better) alternative to WCCP be?!
I'm very grateful to any suggestions or pointers...

Thank you very much

-----------------------------------------

SuSE 10
(2.6.13-15-bigsmp)

SQUID
pahproxy:/usr/local/squid/sbin # ./squid -v
Squid Cache: Version 2.5.STABLE12
configure options: --enable-wccp --enable-wccpv2

SQUID config
http_port 8080
httpd_accel_port 80
httpd_accel_host virtual
wccp2_router 10.253.65.2
wccp2_version 4

WCCP
ip_wccp-1.7
pahproxy:/usr/darko # modinfo ip_wccp
filename: /lib/modules/2.6.13-15-bigsmp/kernel/net/ipv4/ip_wccp.ko
author: Glenn Chisholm
description: WCCP module
license: GPL
vermagic: 2.6.13-15-bigsmp SMP 586 REGPARM gcc-4.0
depends:
srcversion: 008D2C9901DA8C9AF8181E1

IPTABLES
iptables -t nat -A PREROUTING -p tcp -i eth0 --dport 80 -j REDIRECT
--to-ports 8080
...and I've tried
iptables -t nat -A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j DNAT
--to-destination 10.253.65.142:8080
...or even
iptables -t nat -A PREROUTING -s 10.253.0.0/255.255.0.0 -d !
10.253.0.0/255.255.0.0 -i eth0 -p tcp -m tcp --dport 80 -j DNAT
--to-destination 10.253.65.142:8080

--
Darko Longin
Received on Fri Dec 16 2005 - 02:04:17 MST

This archive was generated by hypermail pre-2.1.9 : Sat Dec 31 2005 - 12:00:02 MST