RE: [squid-users] Transparent WCCP/GRE HTTPS issue

>
>
> > -----Original Message-----
> > From: Adrian Chadd [mailto:adrian@creative.net.au]
> > Sent: Thursday, December 06, 2007 9:53 PM
> > To: Jason Gauthier
> > Cc: squid-users@squid-cache.org
> > Subject: Re: [squid-users] Transparent WCCP/GRE HTTPS issue
> >
> > I'm pretty sure WCCPv2 is only supported on the same interface as
the
> > clients. You'd have to run multiple interfaces w/ multiple
instances.
> >

Help me understand the logic (I know you don't have a set up like this
in practice)

I create a GRE tunnel from linux->ASA.
I then use iptables to grab everything that hits that GRE tunnel to send
it the squid proxy.

iptables -t nat -A PREROUTING -i wccp -p tcp -m tcp --dport 80 -j DNAT
--to-destination 192.168.79.2:3129

If I have multiple instances of squid, should I have one GRE tunnel per
instance? Otherwise, it will not matter how many instances I have..
they will all be picked up by the one GRE tunnel.
Received on Sat Dec 08 2007 - 07:34:40 MST