Hi all,
I've a problem with redirecting wccp packets to squid.
What I've done is setup gre1, loaded module ip_wccp,
and I'm using mandrake 10.0, cisco IOS 12.x
The problem is that the cisco router shows that the
cisco has registered the server as cache-engine, and
the port 80 traffic is passing through to my gre1.
However, it doesn't get passed on to my squid (running
at port 8080). I've already setup my iptables rule and
there's no firewall blocking.
iptables -A PREROUTING -p tcp -i eth1 --dport 80 -j
REDIRECT --to-port 8080
(my interface is eth1)
this is the tcpdump from my server (tcpdump -i gre1)
...
00:16:40.826606 xxx.xxx.xxx.xxx.3330 >
xxx.xxx.xxx.xxx.http: S 2830852043:2830852043(0) win
16384 <mss 1460,nop,nop,sackOK> (DF) [ttl 1]
00:16:40.827270 xxx.xxx.xxx.xxx.63387 >
xxx.xxx.xxx.xxx.http: S 3224954194:3224954194(0) win
64240 <mss 1460,nop,nop,sackOK> (DF)
... and this (tcpdump -i eth1 port 80)
00:17:40.277670 xxx.xxx.xxx.xxx.4158 >
xxx.xxx.xxx.xxx.http: S 3786887415:3786887415(0) win
16384 <mss 1460,nop,nop,sackOK> (DF)
00:17:40.278070 xxx.xxx.xxx.xxx.4158 >
xxx.xxx.xxx.xxx.http: S 3786887415:3786887415(0) win
16384 <mss 1460,nop,nop,sackOK> (DF)
00:17:40.278470 xxx.xxx.xxx.xxx.4158 >
xxx.xxx.xxx.xxx.http: S 3786887415:3786887415(0) win
16384 <mss 1460,nop,nop,sackOK> (DF)
...
and port 2048..
00:18:54.119886 xxx..xxx.xxx.xxx.2048 >
xxx.xxx.xxx.xxx.2048: [udp sum ok] udp 52 (DF) (ttl
64, id 32123, len 80)
0x0000   4500 0050 7d7b 4000 4011 eb92 ca9b 1e37      
 E..P}{@.@......7
0x0010   ca9b 1e21 0800 0800 003c 1c5b 0000 0007      
 ...!.....<.[....
0x0020   0000 0004 0000 0000 0000 0000 0000 0000      
 ................
0x0030   0000 0000 0000 0000 0000 0000 0000 0000      
 ................
0x0040   0000 0000 0000 0000 0000 0000 0000 0181      
 ................
00:18:54.120666 xxx.xxx.xxx.xxx.2048 >
xxx.xxx.xxx.xxx.2048: [udp sum ok] udp 64 (ttl 255, id
46240, len 92)
0x0000   4500 005c b4a0 0000 ff11 3561 ca9b 1e21      
 E..\......5a...!
0x0010   ca9b 1e37 0800 0800 0048 3369 0000 0008      
 ...7.....H3i....
0x0020   0000 0004 0000 0004 0000 0182 0000 0001      
 ................
0x0030   ca9b 1e37 0000 0000 ffff ffff ffff ffff      
 ...7............
0x0040   ffff ffff ffff ffff ffff ffff ffff ffff      
 ................
0x0050   ffff ffff ffff ffff 0000 0000                
 ............
but tcpdump port 8080 shows nothing...
this is squid's cachelog
...
Accepting WCCP messages on port 2048, FD 15.
...
Any ideas? 
Thanks.
        
                
______________________________________________________
Click here to donate to the Hurricane Katrina relief effort.
http://store.yahoo.com/redcross-donate3/
Received on Fri Sep 09 2005 - 03:19:28 MDT
This archive was generated by hypermail pre-2.1.9 : Sat Oct 01 2005 - 12:00:03 MDT