From owner-freebsd-questions@FreeBSD.ORG Mon Nov 19 13:58:48 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B1E4D16A420 for ; Mon, 19 Nov 2007 13:58:48 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210]) by mx1.freebsd.org (Postfix) with ESMTP id 4CA0B13C457 for ; Mon, 19 Nov 2007 13:58:48 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: (qmail 63880 invoked by uid 1002); 19 Nov 2007 13:58:31 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(208.70.104.100):. Processed in 6.384553 secs); 19 Nov 2007 13:58:31 -0000 Received: from unknown (HELO ?192.168.30.110?) (steve@ibctech.ca@208.70.104.100) by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP; 19 Nov 2007 13:58:24 -0000 Message-ID: <4741968A.3010009@ibctech.ca> Date: Mon, 19 Nov 2007 08:58:34 -0500 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: infofarmer@FreeBSD.org References: <473DD804.1020502@ibctech.ca> <20071118151716.GA57722@amilo.cenkes.org> In-Reply-To: <20071118151716.GA57722@amilo.cenkes.org> X-Enigmail-Version: 0.95.5 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD router and WCCP X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Nov 2007 13:58:48 -0000 Andrew Pantyukhin wrote: > On Fri, Nov 16, 2007 at 12:48:52PM -0500, Steve Bertrand wrote: >> Does anyone know of a way to configure WCCP redirect support into a >> FreeBSD based router without having to install squid? > > I've only used FreeBSD as a WCCPv1/v2 sink (receiver), but you > can try sending out packets out of gre(4). That should probably > work. > > If you're trying to redirect traffic to another machine running > squid, consider avoiding WCCP, it's not a very bright protocol.j Thanks for the response. We are deploying a commercial appliance as a content filter, so I can only assume that it is running a customized version of Squid but I don't know. Do you have any recommendation on what I should use if WCCP is not recommended? The filter will not be inline, and it will be an opt-in type service, so only certain traffic will need to be redirected. Tks, Steve