[squid-users] Problem with WCCP on OpenBSD

From: Eric J Merkel <merkel@dont-contact.us>
Date: Mon, 6 Dec 2004 15:14:27 -0500

I just loaded squid-2.5.STABLE7 on an OpenBSD 3.6 machine. Squid seems to be
working fine when I setup a browser proxy directly to port 3128. However, I
am attempting to setup WCCP on the Cisco router(IOS 12.2) to redirect web
traffic to the Squid cache and have run into a bit of a problem.

The Cisco shows the squid cache is available and is communication with all
the normal HERE_I_AM/I_SEE_YOU messages. The WCCP counters are incrementing
when I try to hit a web site and I see the router is redirecting packets to
the cache but the access.log does not show the requests making it to Squid.

I am assuming that my port 80->3128 redirection or the GRE un-encapsulation
is not happening right.

Here is my PF translation rule:
rdr on fxp0 inet proto tcp from any to any port 80 -> 127.0.0.1 port 3128

I do have "net.inet.ip.forwarding=1" and "net.inet.gre.wccp=1" set. I have
compiled squid with the "enable-pf-transparent" option.

Here is a short snippet from a tcpdump of the router when trying to access a
web site via WCCP.

15:03:08.951713 207.19.167.199.2048 > cache1.metalink.net.2048: udp 64
15:03:19.140050 cache1.metalink.net.2048 > 207.19.167.199.2048: udp 52
15:03:19.141997 207.19.167.199.2048 > cache1.metalink.net.2048: udp 64
15:03:20.131678 gre-proto-0x883e (gre encap)
15:03:23.128623 gre-proto-0x883e (gre encap)
15:03:29.138911 gre-proto-0x883e (gre encap)
15:03:29.160045 cache1.metalink.net.2048 > 207.19.167.199.2048: udp 52
15:03:29.161871 207.19.167.199.2048 > cache1.metalink.net.2048: udp 64

Anyone, have any idea what I missed or am doing wrong?

Thanks in advance!

===
Eric Merkel
MetaLINK Technologies, Inc
Received on Mon Dec 06 2004 - 13:14:34 MST

This archive was generated by hypermail pre-2.1.9 : Sat Jan 01 2005 - 12:00:01 MST