Hello All.

I've been trying to get squid, a suse 10 box and a cisco ios v12.4 to
work with transparent proxying.

Does this work with 2.6.13 kernel and ip_gre module?
I'm using squid-2.5.STABLE12-20060209 cooked on the suse box and have
also tried squid-squid-3.0-PRE3-20060209

I have been up and down and all around the squid.conf and cisco
configuration and can't get wccp working. If anyone has gotten this
working before, I would appreciate if you could look through my config
and see if I have something really screwed up.

Thanks,
bl8n8r



ifconfig
-------------------------------
# ifconfig
eth0 Link encap:Ethernet HWaddr 00:02:B3:A1:C1:7B
inet addr:172.22.26.50 Bcast:172.22.26.255
Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:40212 errors:0 dropped:0 overruns:0 frame:0
TX packets:45535 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:9717129 (9.2 Mb) TX bytes:35843482 (34.1 Mb)

gre1 Link encap:UNSPEC HWaddr
AC-16-1A-32-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:127.0.0.2 P-t-P:127.0.0.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MTU:1476 Metric:1
RX packets:60 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2880 (2.8 Kb) TX bytes:0 (0.0 b)

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:2064 errors:0 dropped:0 overruns:0 frame:0
TX packets:2064 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2248754 (2.1 Mb) TX bytes:2248754 (2.1 Mb)




iptunnel
----------------------------------------------
# iptunnel
gre0: gre/ip remote any local any ttl inherit nopmtudisc
gre1: gre/ip remote 172.22.26.1 local 172.22.26.50 dev eth0 ttl
inherit


route
----------------------------------------------
# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
172.22.26.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0
eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0
lo
0.0.0.0 172.22.26.1 0.0.0.0 UG 0 0 0
eth0

iptables
-----------------------------------------
# iptables -L -v -n
Chain INPUT (policy ACCEPT 1 packets, 40 bytes)
pkts bytes target prot opt in out source
destination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source
destination

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source
destination
# iptables -L -v -t nat
Chain PREROUTING (policy ACCEPT 671 packets, 120K bytes)
pkts bytes target prot opt in out source
destination
68 3264 REDIRECT tcp -- any any anywhere
anywhere tcp dpt:http redir ports 3128

Chain POSTROUTING (policy ACCEPT 211 packets, 12720 bytes)
pkts bytes target prot opt in out source
destination

Chain OUTPUT (policy ACCEPT 211 packets, 12720 bytes)
pkts bytes target prot opt in out source
destination
#



netstat -topnavel
-----------------------------------------------
# netstat -topnavel
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address
State User Inode PID/Program name Timer
tcp 0 0 0.0.0.0:22 0.0.0.0:*
LISTEN 0 10595 4291/sshd off (0.00/0/0)
tcp 0 0 0.0.0.0:631 0.0.0.0:*
LISTEN 0 12623 4607/cupsd off (0.00/0/0)
tcp 0 0 0.0.0.0:3128 0.0.0.0:*
LISTEN 0 71016 14004/(squid) off (0.00/0/0)
tcp 0 0 127.0.0.1:6010 0.0.0.0:*
LISTEN 0 12678 4918/0 off (0.00/0/0)
tcp 0 0 127.0.0.1:6011 0.0.0.0:*
LISTEN 0 61175 3310/1 off (0.00/0/0)
tcp 0 0 127.0.0.1:6012 0.0.0.0:*
LISTEN 0 67606 10815/2 off (0.00/0/0)
tcp 0 0 172.22.26.50:22 172.22.25.105:59583
ESTABLISHED 0 61134 3310/1 keepalive
(6090.06/0/0)
tcp 0 52 172.22.26.50:22 172.22.25.105:59632
ESTABLISHED 0 67569 10815/2 on (0.28/0/0)
tcp 0 0 172.22.26.50:22 172.22.25.105:59333
ESTABLISHED 0 12637 4918/0 keepalive
(7000.78/0/0)
#



tail -f /var/log/squid/cache.log
------------------------------------------------
# tail /home/squid/var/logs/cache.log
2006/02/09 17:36:45| eventRun: RUN ID 88
2006/02/09 17:36:45| eventRun: Running 'MaintainSwapSpace', id 86
2006/02/09 17:36:45| storeMaintainSwapSpace: f=0.000000, max_scan=100,
max_remove=10
2006/02/09 17:36:45| cbdataFree: 0x84baad8
2006/02/09 17:36:45| cbdataFree: Freeing 0x84baad8
2006/02/09 17:36:45| storeUfsDirMaintain: /home/squid/var/cache/squid
removed 0/10 f=0.000 max_scan=100
2006/02/09 17:36:45| eventAdd: Adding 'MaintainSwapSpace', in 1.000000
seconds
2006/02/09 17:36:45| comm_poll: 0+0 FDs ready
2006/02/09 17:36:45| comm_poll: time out: 1139528205.
2006/02/09 17:36:45| eventRun: RUN ID 89
2006/02/09 17:36:45| eventRun: Running 'wccpHereIam', id 76
2006/02/09 17:36:45| wccpHereIam: Called
2006/02/09 17:36:45| eventAdd: Adding 'wccpHereIam', in 10.000000
seconds
2006/02/09 17:36:45| comm_poll: 1+0 FDs ready
2006/02/09 17:36:45| comm_poll: FD 17 ready for reading
2006/02/09 17:36:45| wccpHandleUdp: Called.
2006/02/09 17:36:45| commSetSelect: FD 17 type 1
2006/02/09 17:36:45| wccpHandleUdp: 64 bytes WCCP pkt from 172.22.26.1:
type=8, version=4, change=9, id=274, number=1
2006/02/09 17:36:45| comm_poll: 0+0 FDs ready
2006/02/09 17:36:46| comm_poll: 0+0 FDs ready
2006/02/09 17:36:46| comm_poll: time out: 1139528206.
2006/02/09 17:36:46| eventRun: RUN ID 90
2006/02/09 17:36:46| eventRun: Running 'Maintain


squid.conf grepped clean
--------------------------------------------------


#
# cat squid.conf | grep -v \# | grep -v ^$
http_port 3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_dir ufs /home/squid/var/cache/squid 7000 16 256
emulate_httpd_log on
log_ip_on_direct off
debug_options ALL,9
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl CONNECT method CONNECT
http_access allow all
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
acl our_networks src 172.22.24.0/24 172.22.25.0/24 172.22.26.0/24
http_access allow our_networks
http_access deny all
http_reply_access allow all
icp_access allow all
cache_mgr akesller@flambeau.com
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
wccp_router 172.22.26.1
coredump_dir /home/squid/var/cache/squid
ie_refresh on
#

tail /var/log/messages
-------------------------------------------
Feb 9 17:37:17 squid-box squid[14002]: Squid Parent: child process
14004 started
Feb 9 17:37:17 squid-box squid[14004]: Starting Squid Cache version
2.5.STABLE12-20060209 for i686-pc-linux-gnu...
Feb 9 17:37:17 squid-box squid[14004]: Process ID 14004
Feb 9 17:37:17 squid-box squid[14004]: With 1024 file descriptors
available
Feb 9 17:37:17 squid-box squid[14004]: DNS Socket created at 0.0.0.0,
port 32785, FD 6
Feb 9 17:37:17 squid-box squid[14004]: Adding nameserver 172.22.24.22
from /etc/resolv.conf
Feb 9 17:37:17 squid-box squid[14004]: User-Agent logging is disabled.
Feb 9 17:37:17 squid-box squid[14004]: Referer logging is disabled.
Feb 9 17:37:18 squid-box squid[14004]: Unlinkd pipe opened on FD 11
Feb 9 17:37:18 squid-box squid[14004]: Swap maxSize 7168000 KB,
estimated 551384 objects
Feb 9 17:37:18 squid-box squid[14004]: Target number of buckets: 27569
Feb 9 17:37:18 squid-box squid[14004]: Using 32768 Store buckets
Feb 9 17:37:18 squid-box squid[14004]: Max Mem size: 8192 KB
Feb 9 17:37:18 squid-box squid[14004]: Max Swap size: 7168000 KB
Feb 9 17:37:18 squid-box squid[14004]: Local cache digest enabled;
rebuild/rewrite every 3600/3600 sec
Feb 9 17:37:18 squid-box squid[14004]: Rebuilding storage in
/home/squid/var/cache/squid (CLEAN)
Feb 9 17:37:18 squid-box squid[14004]: Using Least Load store dir
selection
Feb 9 17:37:18 squid-box squid[14004]: Set Current Directory to
/home/squid/var/cache/squid
Feb 9 17:37:18 squid-box squid[14004]: Loaded Icons.
Feb 9 17:37:18 squid-box squid[14004]: Accepting HTTP connections at
0.0.0.0, port 3128, FD 13.
Feb 9 17:37:18 squid-box squid[14004]: Accepting ICP messages at
0.0.0.0, port 3130, FD 14.
Feb 9 17:37:18 squid-box squid[14004]: Accepting HTCP messages on port
4827, FD 15.
Feb 9 17:37:18 squid-box squid[14004]: Accepting SNMP messages on port
3401, FD 16.
Feb 9 17:37:18 squid-box squid[14004]: Accepting WCCP messages on port
2048, FD 17.
Feb 9 17:37:18 squid-box squid[14004]: Pinger socket opened on FD 19
Feb 9 17:37:18 squid-box squid[14004]: Ready to serve requests.
Feb 9 17:37:18 squid-box squid[14004]: Done reading
/home/squid/var/cache/squid swaplog (233 entries)
Feb 9 17:37:18 squid-box squid[14004]: Finished rebuilding storage
from disk.
Feb 9 17:37:18 squid-box squid[14004]: 233 Entries scanned
Feb 9 17:37:18 squid-box squid[14004]: 0 Invalid entries.
Feb 9 17:37:18 squid-box squid[14004]: 0 With invalid flags.
Feb 9 17:37:18 squid-box squid[14004]: 233 Objects loaded.
Feb 9 17:37:18 squid-box squid[14004]: 0 Objects expired.
Feb 9 17:37:18 squid-box squid[14004]: 0 Objects cancelled.
Feb 9 17:37:18 squid-box squid[14004]: 0 Duplicate URLs
purged.
Feb 9 17:37:18 squid-box squid[14004]: 0 Swapfile clashes
avoided.
Feb 9 17:37:18 squid-box squid[14004]: Took 0.5 seconds ( 501.7
objects/sec).
Feb 9 17:37:18 squid-box squid[14004]: Beginning Validation Procedure
Feb 9 17:37:18 squid-box squid[14004]: Completed Validation
Procedure
Feb 9 17:37:18 squid-box squid[14004]: Validated 233 Entries
Feb 9 17:37:18 squid-box squid[14004]: store_swap_size = 2000k
Feb 9 17:37:19 squid-box squid[14004]: storeLateRelease: released 0
objects