LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - General (http://www.linuxquestions.org/questions/linux-general-1/)
-   -   Squid 2.6 + wccpv2 + cisco 7206VXR (http://www.linuxquestions.org/questions/linux-general-1/squid-2-6-wccpv2-cisco-7206vxr-727883/)

lifeainteasy 05-22-2009 06:07 PM

Squid 2.6 + wccpv2 + cisco 7206VXR
 
The following link will have a ton of details about my cofiguration
http://docs.google.com/View?id=d5nrcdb_0gwsczmm3

Network Layout:
http://picasaweb.google.com/lh/photo...eat=directlink

I need to get the DSL users and Wireless users go through squid simply for http cache(trying to save some bandwidth here)

With that current configuration, when I enable 'ip wccp web-cache redirect out' on the s2/0 interface, the clients cannot browse at all. Any help or suggestions will be greatly appreciated. I am completely open to trying different software besides squid as well.

thanks.

acid_kewpie 05-24-2009 03:07 AM

is traffic hitting squid? what do your logs say?

lifeainteasy 05-26-2009 11:13 AM

Quote:

Originally Posted by acid_kewpie (Post 3550823)
is traffic hitting squid? what do your logs say?

I get nothing on the access.log, but I get the following messages on the cache.log file:
Code:

2009/05/26 08:05:55| cbdataFree: 0x8ea7a00
2009/05/26 08:05:55| cbdataFree: Freeing 0x8ea7a00
2009/05/26 08:05:55| storeAufsDirMaintain: /var/spool/squid removed 0/10 f=0.000 max_scan=100
2009/05/26 08:05:55| comm_select: timeout 1000
2009/05/26 08:05:56| comm_select: timeout 179
2009/05/26 08:05:56| storeMaintainSwapSpace: f=0.000000, max_scan=100, max_remove=10
2009/05/26 08:05:56| cbdataFree: 0x8ea7a00
2009/05/26 08:05:56| cbdataFree: Freeing 0x8ea7a00
2009/05/26 08:05:56| storeAufsDirMaintain: /var/spool/squid removed 0/10 f=0.000 max_scan=100
2009/05/26 08:05:56| comm_select: timeout 1000
2009/05/26 08:05:57| comm_select: timeout 180
2009/05/26 08:05:57| comm_select: timeout 1
2009/05/26 08:05:57| storeMaintainSwapSpace: f=0.000000, max_scan=100, max_remove=10
2009/05/26 08:05:57| cbdataFree: 0x8ea7a00
2009/05/26 08:05:57| cbdataFree: Freeing 0x8ea7a00
2009/05/26 08:05:57| storeAufsDirMaintain: /var/spool/squid removed 0/10 f=0.000 max_scan=100
2009/05/26 08:05:57| comm_select: timeout 1000
2009/05/26 08:05:58| comm_select: timeout 181
2009/05/26 08:05:58| storeMaintainSwapSpace: f=0.000000, max_scan=100, max_remove=10
2009/05/26 08:05:58| cbdataFree: 0x8ea7a00
2009/05/26 08:05:58| cbdataFree: Freeing 0x8ea7a00
2009/05/26 08:05:58| storeAufsDirMaintain: /var/spool/squid removed 0/10 f=0.000 max_scan=100
2009/05/26 08:05:58| comm_select: timeout 1000
2009/05/26 08:05:59| comm_select: timeout 182
2009/05/26 08:05:59| storeMaintainSwapSpace: f=0.000000, max_scan=100, max_remove=10
2009/05/26 08:05:59| cbdataFree: 0x8ea7a00
2009/05/26 08:05:59| cbdataFree: Freeing 0x8ea7a00
2009/05/26 08:05:59| storeAufsDirMaintain: /var/spool/squid removed 0/10 f=0.000 max_scan=100
2009/05/26 08:05:59| comm_select: timeout 613

Perhaps firewall could be blocking traffic? I am not the brightest when it comes to iptables. Here is the output of iptables -L
Code:

# iptables -L
Chain INPUT (policy ACCEPT)
target    prot opt source              destination       
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:webcache
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:http
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:smtp
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:pop3
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:imap
RH-Firewall-1-INPUT  all  --  anywhere            anywhere           

Chain FORWARD (policy ACCEPT)
target    prot opt source              destination       
RH-Firewall-1-INPUT  all  --  anywhere            anywhere           

Chain OUTPUT (policy ACCEPT)
target    prot opt source              destination       
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:webcache
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:http
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:pop3
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:smtp
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:imap

Chain RH-Firewall-1-INPUT (2 references)
target    prot opt source              destination       
ACCEPT    all  --  anywhere            anywhere           
ACCEPT    icmp --  anywhere            anywhere            icmp any
ACCEPT    esp  --  anywhere            anywhere           
ACCEPT    ah  --  anywhere            anywhere           
ACCEPT    udp  --  anywhere            224.0.0.251        udp dpt:mdns
ACCEPT    udp  --  anywhere            anywhere            udp dpt:ipp
ACCEPT    tcp  --  anywhere            anywhere            tcp dpt:ipp
ACCEPT    all  --  anywhere            anywhere            state RELATED,ESTABLISHED
ACCEPT    tcp  --  anywhere            anywhere            state NEW tcp dpt:ssh
ACCEPT    udp  --  anywhere            anywhere            udp dpt:radius
ACCEPT    udp  --  anywhere            anywhere            udp dpt:radius-acct
REJECT    all  --  anywhere            anywhere            reject-with icmp-host-prohibited

Thanks


All times are GMT -5. The time now is 05:52 PM.