From owner-freebsd-questions@FreeBSD.ORG Tue Dec 6 22:34:06 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D74C516A41F for ; Tue, 6 Dec 2005 22:34:06 +0000 (GMT) (envelope-from alan@fromorbit.com) Received: from thing1.auspcmarket.com.au (thing1.auspcmarket.com.au [203.31.169.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4ACDB43DA1 for ; Tue, 6 Dec 2005 22:33:55 +0000 (GMT) (envelope-from alan@fromorbit.com) Received: from [192.168.1.99] (unknown [192.168.1.99]) by thing1.auspcmarket.com.au (Postfix) with ESMTP id 28B4E8E04; Wed, 7 Dec 2005 08:32:31 +1100 (EST) From: Alan Garfield To: Cezar Fistik In-Reply-To: <1824312479.20051206194833@arax.md> References: <1133825473.2882.22.camel@random.fromorbit.com> <1824312479.20051206194833@arax.md> Content-Type: text/plain Date: Wed, 07 Dec 2005 08:32:29 +1100 Message-Id: <1133904749.2808.7.camel@random.fromorbit.com> Mime-Version: 1.0 X-Mailer: Evolution 2.2.3 (2.2.3-2.fc4) Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD 6.x / GRE / WCCP / Squid X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Dec 2005 22:34:07 -0000 Hello Cezar, On Tue, 2005-12-06 at 19:48 +0200, Cezar Fistik wrote: > Just a couple of thoughts. > Do you realy need that tunnel? Try if it will work without it, maybe > there's a problem with it. I've not really got a tunnel. It's just setup as per the Squid docs to have FreeBSD think it is. The Cisco just sends the packets encapsulated in gre to the FreeBSD squid box. The tunnel is setup so FreeBSD will strip the gre headers and present the system with the original encapsulated packet on the gre0 interface. I can see the encapsulated packets via tcpdump on gre0, and I can also see the packets hitting my ipfw fwd rule when I turn logging on for that rule. But I never see the forwarded packets, they just disappear! > Second, can you see your squid in show ip > wcccp web-cache detail from the cisco? Yes, the Cisco happily sends the packets and sees the cache. > Does you squid work without > wccp? Yes, the cache works perfectly without issue. > I mean setting up the host explicitly to use the proxy? I don't > remember precisely, I did it a long ago, but I think you should use > wccp version 2 in order to run wccp with squid. I've not tried version 2, but I will try it now. > Hope that helps. Thanks, Alan.