RE: [squid-users] Red Hat 5 - Squid 2.6 Stable 13 WCCP V2 and GRE

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Tue, 12 Jun 2007 22:49:19 +0200

tis 2007-06-12 klockan 10:16 -0500 skrev Van Der Hart, Kevin:
> I have determined what is happening but am not sure what to do to fix
> the problem. I ran tcpdump on my client and it sent 3 SYN requests. I
> saw 378 SYN requests come in my GRE interface and saw 375 SYN requests
> go out my ETH interface with a source IP of the client address. Since
> the source address is not the Squid machine, WCCP is sending them back
> to me again. Is Linux forwarding these packets acting as a router or
> does Squid use the client IP address in its request to contact the
> real web server?

Then your iptables rule is not intercepting the packet.

Triple check your nat rules again

iptables-save -t nat

remember that these SYNs is coming on on the gre interface, not eth.

Regards
Henrik

Received on Tue Jun 12 2007 - 14:49:26 MDT

This archive was generated by hypermail pre-2.1.9 : Sun Jul 01 2007 - 12:00:04 MDT