Hi All,
Seems like wccp is almost working, but I hit a wall and am out of ideas
again.
Router sees the cache fine "I see you packets", but web browsing does not
work and packets are shown as redirected.
Any debugging ideas?
Squid works fine as a proxy server (wccp lines commented out). Browsing
works fine from squid box.
Environment
Router (cisco 1800 ios 12.4(9)T1
Fedora Core 5, kernel 2.6.15-1.2054
Squid 2.6 Stable 3 (--enable-wccp --enable-linux-netfilter)
Squid.conf:
wccp2_router 192.168.1.1
http_access allow all
Cisco config
ip wccp web-cache
ip cef
interface Vlan2
ip address 192.168.1.1 255.255.255.0
ip wccp web-cache redirect in
ip virtual-reassembly
no ip route-cache cef
Cisco sh ip web cache
Service Identifier: web-cache
Number of Service Group Clients: 1
Number of Service Group Routers: 1
Total Packets s/w Redirected: 52
Process: 52
Fast: 0
CEF: 0
-none-
Total Packets Denied Redirect: 0
Total Packets Unassigned: 279
Cache log:
| WCCP Disabled.
| Accepting WCCPv2 messages on port 2048, FD 14.
| Initialising all WCCPv2 lists
| Ready to serve requests.
gre tunnel related:
gre0 Link encap:UNSPEC HWaddr
00-00-00-00-05-08-C0-6E-00-00-00-00-00-00-00-00
inet addr:172.16.1.6 Mask:255.255.255.252
(iptables -t nat -A PREROUTING -i gre0 -p tcp --dport 80 -j DNAT
--to-destination 192.168.1.120:3128)
iptables -t nat -L
DNAT tcp -- anywhere anywhere tcp dpt:http
to:192.168.1.120:3128
What's wrong with using ip_gre?
ip_wccp is a dirty hack, and should only be used if ip_gre doesn't
work..
