Re: [squid-users] WCCP return method
On Fri, May 1, 2009 at 5:28 AM, Amos Jeffries squ...@treenet.co.nz wrote: kgardenia42 wrote: On 4/30/09, Ritter, Nicholas nicholas.rit...@americantv.com wrote: * WCCP supports a return method for packets which the web-cache decides to reject/return. Does squid support this? I see that the return method can be configured in squid but is the support for returning actually there? I dunno about this one. Does anyone know the answer to this? I'd just like to know what squid can do when it comes to return method. Only whats documented. http://www.squid-cache.org/Doc/config/wccp2_return_method/ In what circumstances would squid decided to trigger the return mechanism currently? I was looking at the source and I couldn't see where this might be implemented. One of the reasons I ask is that since I'm using iptables to forward things to the local squid port that came to me via WCCP I was wondering if it was feasible to take squid out of the loop just by changing my iptables rules to reject packets forwarded by WCCP but I don't know enough but WCCP return methods to know if it is possible to use the return method mechanism to return such packets back to the router. Can anyone who is knowledgeable about this please help? Thanks,
Re: [squid-users] WCCP return method
Squid doesn't currently implement any smarts for the WCCPv2 return path. Adrian 2009/5/6 kgardenia42 kgardeni...@googlemail.com: On Fri, May 1, 2009 at 5:28 AM, Amos Jeffries squ...@treenet.co.nz wrote: kgardenia42 wrote: On 4/30/09, Ritter, Nicholas nicholas.rit...@americantv.com wrote: * WCCP supports a return method for packets which the web-cache decides to reject/return. Does squid support this? I see that the return method can be configured in squid but is the support for returning actually there? I dunno about this one. Does anyone know the answer to this? I'd just like to know what squid can do when it comes to return method. Only whats documented. http://www.squid-cache.org/Doc/config/wccp2_return_method/ In what circumstances would squid decided to trigger the return mechanism currently? I was looking at the source and I couldn't see where this might be implemented. One of the reasons I ask is that since I'm using iptables to forward things to the local squid port that came to me via WCCP I was wondering if it was feasible to take squid out of the loop just by changing my iptables rules to reject packets forwarded by WCCP but I don't know enough but WCCP return methods to know if it is possible to use the return method mechanism to return such packets back to the router. Can anyone who is knowledgeable about this please help? Thanks,
[squid-users] WCCP return method
Hi, I've been trying to get my head around a couple of concepts in WCCP and I think I'm missing something and lots of Googling hasn't helped much so far. Assuming the following setup : * a LAN where the gateway is using WCCP2 (GRE) to catch traffic destined for a given web-app ip address (using an access-list) and forward it to a squid box * the squid box is using iptables to catch traffic forwarded to it by the router and redirect it to a local squid port My questions are : * When the squid box has to proxy to the web-app, what is the recommended way to stop a circular redirect i.e. I want to avoid the squid box's proxied connection from getting intercepted by the router's WCCP rules and looped back around to the squid box again. * WCCP supports a return method for packets which the web-cache decides to reject/return. Does squid support this? I see that the return method can be configured in squid but is the support for returning actually there? I'd be very grateful for your help. Thanks.
RE: [squid-users] WCCP return method
-Original Message- From: kgardenia42 [mailto:kgardeni...@googlemail.com] Sent: Thursday, April 30, 2009 1:44 PM To: squid-users@squid-cache.org Subject: [squid-users] WCCP return method My questions are : * When the squid box has to proxy to the web-app, what is the recommended way to stop a circular redirect i.e. I want to avoid the squid box's proxied connection from getting intercepted by the router's WCCP rules and looped back around to the squid box again. Have the squid box on a dedicated sub-interface or physical interface, run the wccp redirect statements on the local Ethernet interface and use an ip wccp redirect exclude statement on the interface the squid box is running on. This is how I do it, and it works great. * WCCP supports a return method for packets which the web-cache decides to reject/return. Does squid support this? I see that the return method can be configured in squid but is the support for returning actually there? I dunno about this one.
Re: [squid-users] WCCP return method
On 4/30/09, Ritter, Nicholas nicholas.rit...@americantv.com wrote: * WCCP supports a return method for packets which the web-cache decides to reject/return. Does squid support this? I see that the return method can be configured in squid but is the support for returning actually there? I dunno about this one. Does anyone know the answer to this? I'd just like to know what squid can do when it comes to return method. Thanks.
Re: [squid-users] WCCP return method
kgardenia42 wrote: On 4/30/09, Ritter, Nicholas nicholas.rit...@americantv.com wrote: * WCCP supports a return method for packets which the web-cache decides to reject/return. Does squid support this? I see that the return method can be configured in squid but is the support for returning actually there? I dunno about this one. Does anyone know the answer to this? I'd just like to know what squid can do when it comes to return method. Only whats documented. http://www.squid-cache.org/Doc/config/wccp2_return_method/ Amos -- Please be using Current Stable Squid 2.7.STABLE6 or 3.0.STABLE14 Current Beta Squid 3.1.0.7