WCCP + Squid with 2811 problems. Very odd.

Unanswered Question

Hello Everyone!


I seem to be very close to getting this to work, but I'm running into some problems. First I'll explain my background story.


I need a transparent proxy and the proxy server will need to be able to view the client's IP address. I currently have a sonicwall router which forwards all web traffic to the proxy. This is transparent and it works, but it gives the sonicwall ip address as the client's ip address. I cannot see who went to what.


I was told WCCP will maintain the source ip address. I've been following this tutorial almost strictly word by word: http://www.digitalnerds.net/linux/transparent-squid-with-wccp/


The only thing I changed is that I am using wccpv2 instead of 1. When I enable wccp on the router I can no longer download web pages, but I can ping the web servers. On the router side I do see traffic going through as CEF when I do a "show ip wccp". On the linux server side I also see gre1 encapsulation packets on the gre interface and I also get entrys in my cache.log for squid, but I don't know what they mean:


  1. 2010/09/03 14:46:55| Preparing for shutdown after 96 requests
  2. 2010/09/03 14:46:55| Waiting 30 seconds for active connections to finish
  3. 2010/09/03 14:46:55| FD 12 Closing HTTP connection
  4. 2010/09/03 14:46:55| FD 14 Closing WCCP socket
  5. 2010/09/03 14:47:05| Shutting down...
  6. 2010/09/03 14:47:05| FD 13 Closing ICP connection
  7. 2010/09/03 14:47:05| Closing unlinkd pipe on FD 10
  8. 2010/09/03 14:47:05| storeDirWriteCleanLogs: Starting...
  9. 2010/09/03 14:47:05|   Finished.  Wrote 3901 entries.
  10. 2010/09/03 14:47:05|   Took 0.0 seconds (297672.6 entries/sec).
  11. CPU Usage: 0.256 seconds = 0.148 user + 0.108 sys
  12. Maximum Resident Size: 0 KB
  13. Page faults with physical i/o: 0
  14. Memory usage for squid via mallinfo():
  15.         total space in arena:    2520 KB
  16.         Ordinary blocks:         2409 KB     13 blks
  17.         Small blocks:               0 KB      5 blks
  18.         Holding blocks:           280 KB      1 blks
  19.         Free Small blocks:          0 KB
  20.         Free Ordinary blocks:     110 KB
  21.         Total in use:            2689 KB 96%
  22.         Total free:               110 KB 4%
  23. 2010/09/03 14:47:05| logfileClose: closing log /var/log/squid/store.log
  24. 2010/09/03 14:47:05| Squid Cache (Version 2.7.STABLE3): Exiting normally.
  25. 2010/09/03 14:47:07| Starting Squid Cache version 2.7.STABLE3 for i386-debian-linux-gnu...
  26. 2010/09/03 14:47:07| Process ID 9208
  27. 2010/09/03 14:47:07| With 1024 file descriptors available
  28. 2010/09/03 14:47:07| Using epoll for the IO loop
  29. 2010/09/03 14:47:07| DNS Socket created at 0.0.0.0, port 60875, FD 6
  30. 2010/09/03 14:47:07| Adding domain  from /etc/resolv.conf
  31. 2010/09/03 14:47:07| Adding nameserver 10.128.0.254 from /etc/resolv.conf
  32. 2010/09/03 14:47:07| Adding nameserver 10.131.0.254 from /etc/resolv.conf
  33. 2010/09/03 14:47:07| User-Agent logging is disabled.
  34. 2010/09/03 14:47:07| Referer logging is disabled.
  35. 2010/09/03 14:47:07| Unlinkd pipe opened on FD 10
  36. 2010/09/03 14:47:07| Swap maxSize 102400 KB, estimated 7876 objects
  37. 2010/09/03 14:47:07| Target number of buckets: 393
  38. 2010/09/03 14:47:07| Using 8192 Store buckets
  39. 2010/09/03 14:47:07| Max Mem  size: 8192 KB
  40. 2010/09/03 14:47:07| Max Swap size: 102400 KB
  41. 2010/09/03 14:47:07| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
  42. 2010/09/03 14:47:07| logfileOpen: opening log /var/log/squid/store.log
  43. 2010/09/03 14:47:07| Rebuilding storage in /var/spool/squid (CLEAN)
  44. 2010/09/03 14:47:07| Using Least Load store dir selection
  45. 2010/09/03 14:47:07| Set Current Directory to /var/spool/squid
  46. 2010/09/03 14:47:07| Loaded Icons.
  47. 2010/09/03 14:47:08| Accepting transparently proxied HTTP connections at 0.0.0.0, port 3128, FD 12.
  48. 2010/09/03 14:47:08| Accepting ICP messages at 0.0.0.0, port 3130, FD 13.
  49. 2010/09/03 14:47:08| HTCP Disabled.
  50. 2010/09/03 14:47:08| WCCP Disabled.
  51. 2010/09/03 14:47:08| Accepting WCCPv2 messages on port 2048, FD 14.
  52. 2010/09/03 14:47:08| Initialising all WCCPv2 lists
  53. 2010/09/03 14:47:08| Ready to serve requests.
  54. 2010/09/03 14:47:08| Done reading /var/spool/squid swaplog (3901 entries)
  55. 2010/09/03 14:47:08| Finished rebuilding storage from disk.
  56. 2010/09/03 14:47:08|      3901 Entries scanned
  57. 2010/09/03 14:47:08|         0 Invalid entries.
  58. 2010/09/03 14:47:08|         0 With invalid flags.
  59. 2010/09/03 14:47:08|      3901 Objects loaded.
  60. 2010/09/03 14:47:08|         0 Objects expired.
  61. 2010/09/03 14:47:08|         0 Objects cancelled.
  62. 2010/09/03 14:47:08|         0 Duplicate URLs purged.
  63. 2010/09/03 14:47:08|         0 Swapfile clashes avoided.
  64. 2010/09/03 14:47:08|   Took 0.4 seconds (11008.4 objects/sec).
  65. 2010/09/03 14:47:08| Beginning Validation Procedure
  66. 2010/09/03 14:47:08|   Completed Validation Procedure
  67. 2010/09/03 14:47:08|   Validated 3901 Entries
  68. 2010/09/03 14:47:08|   store_swap_size = 92096k
  69. 2010/09/03 14:47:08| storeLateRelease: released 0 objects



I'm not sure where to go from here. It looks like everythings working, but it obviously is not. Is there anything else I can try?


Thanks in advance!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion