FC3/Kernel 2.6, Fast Switching, Transparent Proxy, Squid, WCCP Help!!!!!

Discussion in 'Linux Networking' started by swoolley, May 19, 2005.

  1. swoolley

    swoolley Guest

    I am trying to implement a transparent proxying solution with FC3,
    Squid, and Cisco Routers (via WCCP/GRE) and am having problems getting
    the Cisco Router to talk with my squid box. Per Jeremy Garcia's
    excellent article in Linux Magazine, I have checked that my updated
    stock FC3 kernel (2.6.11-1.14_FC3smp) has packet filtering, connection
    tracking, IP tables support, full network address translation (NAT) and
    REDIRECT target support enabled in the kernel (loadable modules0. The
    article also states that FAST Switching must be set to NO.

    I have looked for Fast Switching in my .config, in make menuconfig, and
    googling, but have not seen anything as far as configuring it in FC3 or
    2.6 kernels. Does anyone have any ideas how I can set/check the Fast
    Switching setting?

    I know the box functions well as a normal proxy, however the
    transparent part of this is what I am having a difficult time getting
    to work -- more specifically the wccp connection.

    viewing my iptunnel gives:
    gre0: gre/ip remote any local any ttl inherit nopmtudisc
    sit0: ipv6/ip remote any local any ttl 64 nopmtudisc
    gre1: gre/ip remote 192.168.1.1 local 192.168.1.200 dev eth0 ttl
    inherit

    lsmod shows ip_gre, ipt_REDIRECT, iptables_nat, and other modules

    I am using the a 2.6.11 kernel so I do nit believe I have to run the
    ip_wccp patch.

    netstat -i gives:
    [root@squid2 ~]# netstat -i
    Kernel Interface table
    Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Flg
    eth0 1500 0 679078 0 0 0 1326781 0 0 0 BMRU
    gre1 1476 0 0 0 0 0 1 0 0 0 OPRU
    lo 16436 0 7 0 0 0 7 0 0 0 LRU

    which looks like only 1 TX-OK packet has been transmitted????


    Help!
     
    swoolley, May 19, 2005
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.