Re: [squid-users] WCCP + Squid with Cisco 2811. Not working from Chris Abel on 2010-09-15 (squid-users)

From: Chris Abel <cabel_at_wildwood.edu>
Date: Wed, 15 Sep 2010 17:09:47 -0400

Amos Jeffries <squid3_at_treenet.co.nz> writes:
>In the wiki our example sets routing table 100 only on "lo". Does changing
>that to "eth0" or "wccp0" make any difference? You can test by creating a
>table 100 on all of them individually.

The squid wiki example I am looking at does not have any routing tables.
I'm using the one you gave me here
http://wiki.squid-cache.org/Features/Wccp2#Squid_configuration_for_WCCP_version_2

Following the instructions for Cisco IOS 12.4(6) T2 router.

I only have those 2 iptables rules set on my squid bos so I'm not sure how
my iptables could be the problem. This is all of my active iptables
printed out:

fortress:/var/log/squid# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
fortress:/var/log/squid# iptables -L -t nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
REDIRECT tcp -- anywhere anywhere tcp dpt:www
redir ports 3129

Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

And just so I know this isn't the problem I will also give you my ifconifg:

fortress:/var/log/squid# ifconfig
eth0 Link encap:Ethernet HWaddr 00:03:47:ea:a4:b9
          inet addr:192.168.0.21 Bcast:192.168.0.23 Mask:255.255.255.252
          inet6 addr: fe80::203:47ff:feea:a4b9/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
          RX packets:1776 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1703 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:426053 (416.0 KiB) TX bytes:431866 (421.7 KiB)

lo Link encap:Local Loopback
          inet addr:127.0.0.1 Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING MTU:16436 Metric:1
          RX packets:734 errors:0 dropped:0 overruns:0 frame:0
          TX packets:734 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:293220 (286.3 KiB) TX bytes:293220 (286.3 KiB)

wccp0 Link encap:UNSPEC HWaddr
C0-A8-00-15-00-00-65-74-00-00-00-00-00-00-00-00
          inet addr:192.168.0.21 P-t-P:192.168.0.21 Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MTU:1476 Metric:1
          RX packets:285 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:22823 (22.2 KiB) TX bytes:0 (0.0 B)

Thanks for all the help thus far. I'm not very good when it comes to
iptables so it could very well be that. Let me know if you see something
or want me to try anything else.

-Chris

___________________________
Chris Abel
Systems and Network Administrator
Wildwood Programs
2995 Curry Road Extension
Schenectady, NY 12303
518-836-2341
Received on Wed Sep 15 2010 - 21:05:19 MDT

This archive was generated by hypermail 2.2.0 : Thu Sep 16 2010 - 12:00:03 MDT