RE: [squid-users] Problem logging in to webmail site

 
 
>>>"Sturgis, Grant" <Grant.Sturgis@arraybiopharma.com> 09/14 1:30 pm >>>

 
 
>>-----Original Message-----
>>From: Listserv [mailto:SALISTSERV@adphila.org]
>>Sent: Wednesday, September 14, 2005 11:27 AM
>>To: Sturgis, Grant
>>Subject: RE: [squid-users] Problem logging in to webmail site
>>
>>
>>Using WCCP... applicable router config lines:
>>
>>ip wccp version 1
>>ip wccp web-cache redirect-list 199
>>
>>access-list 199 permit tcp any any eq www
>>access-list 199 permit tcp any any eq 8080
>>
>>interface FastEthernet3/1
>> description connected to EthernetLAN_2
>> ip wccp web-cache redirect out
>>
>>So it seems like maybe SSL/HTTPS traffic isn't being
>>forwarded to the squid at all?
>
>That is good. Check your firewall logs for traffic from the client and

>/ or to the web server in question. Look for dport 443 to see if that
>traffic is going out the firewall (i.e. not going thru Squid).
>
 
Okay.... looked into the fw logs. No traffic on dport 443... but I did
find traffic, which seems to be addressed to the webmail site being
dropped by iptables:
Sep 14 13:42:21 fw1 kernel: [IPTABLES DROP] : IN=eth1 OUT=eth0 SRC=[my
workstation] DST=[webmail host] LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=62112 DF PROTO=TCP SPT=38972 DPT=2095 WINDOW=5840 RES=0x00 SYN URGP=0

So this seems to suggest that the issue relates to the fw configuration?
 Why would connecting to a squid vs. transparent caching make a
difference here?
Received on Wed Sep 14 2005 - 11:51:43 MDT