Re: [squid-users] WCCPv2 current instructions?

From: Adrian Chadd <adrian@dont-contact.us>
Date: Fri, 15 Sep 2006 13:33:44 +0800

Hiya,

I've written up a couple of example WCCPv2 situations (ie, my home deployment)
at http://wiki.squid-cache.org/ConfigExamples/.

I use a different iptables ruleset (gre rather than eth0, DNAT rather than REDIRECT)
and it seems to work fine for me.

Adrian

On Thu, Sep 14, 2006, Shaun Skillin (home) wrote:
>
>
> Hello,
>
> I've been looking for quite some time for instructions on using WCCPv2.
> squid-cache.org docs section points to visolve, and their site has nothing on WCCPv2 that I can find. I've read sooo many posts regarding how to set it up, but most of the posts have to do with version 1, which virtually NO Cisco device supports anymore. For ver2, the Cisco docs are at least clear, so I think I have that side set up correctly. From what I have gleaned, I should do the following:
>
> I'm using CENTOS 4.3 and SQUID-2.6STABLE3
>
> Modprobe ip_gre
>
> iptunnel add gre1 mode gre remote <ip-address-of-router> local <ip-address-of-squid-cache> dev eth0 ifconfig gre1 127.0.0.2 up
>
> from /etc/sysctl.conf:
>
> net.ipv4.ip_forward =3D 1
> net.ipv4.conf.all.rp_filter =3D 1
> kernel.sysrq =3D 0
>
> iptables -t nat -A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
>
> Are these the correct steps? This info was from a doc on version 1.
> What's missing? Is there a current HOWTO for today's most current builds (Sept 14, 2006 as of this writing)?
>
> I am seeing WCCP packets flow just fine, the cache is registered with the router, I see the SYN packets inside the GRE tunnel redirected from the router, but Squid never attempts to actually send a SYN out to the world to get content.
>
> Thanks very much for any help!
>
> Shaun Skillin?
Received on Thu Sep 14 2006 - 23:32:20 MDT

This archive was generated by hypermail pre-2.1.9 : Sun Oct 01 2006 - 12:00:03 MDT