Re: [OOPS] wccp - linux - oops
Hello - Original Message - From: Igor Khasilev [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, October 09, 2001 5:53 PM Subject: Re: [OOPS] wccp - linux - oops On Tue, 9 Oct 2001, Mark Ivanov wrote: ÎÁËÌÁÄÙ×ÁÎÉÅÍ http://www.vsb.cz/~hal01/cache/wccp/ip_gre.patch ÷ÉÄÎÙ-ÌÉ tcpdumpom ÏÔÆÏÒ×ÁÒÖÅÎÎÙÅ ip-ÐÁËÅÔÙ? ÎÉÖÅ. éÍÅÌÏÓØ ××ÉÄÕ ÎÅ gre-ÐÁËÅÔÙ (ÐÒÏÔÏËÏÌ 47), Á ÕÖÅ ÄÅ-ËÁÐÓÕÌÉÒÏ×ÁÎÎÙÅ. ÄÁ ËÁË ÏËÁÚÁÌÏÓØ ÄÅ-ËÁÐÓÕÌÑÃÉÉ ÎÅÐÒÏÉÓÈÏÄÉÔ. ÷ Ó×ÑÚÉ Ó ÜÔÉÍ ÐÏÄÓËÁÖÉÔÅ ÇÄÅ ÍÏÖÎÏ ÎÁÊÔÉ ip_gre ÄÌÑ wccp v2. # tcpdump -x -n ip proto 47 User level filter, protocol ALL, datagram packet socket tcpdump: listening on all devices 14:15:02.921021 eth0 gre-proto-0x883E (gre encap) 4500 004c 0006 ff2f 9464 c385 d00a ^^ × ÔÁËÉÈ ÖÅ ÐÒÉÍÅÒÎÏ ÕÓÌÏ×ÉÑÈ wccp - linux - squid ÒÁÂÏÔÁÅÔ. ó wccp2? ÎÅÔ =\. Igor Khasilev | PACO Links, igor at paco dot net | = If you would like to unsubscribe from this list send message to [EMAIL PROTECTED] with unsubscribe oops in message body. Archive is accessible on http://lists.paco.net/oops-rus/ Best Regards Mark N Ivanov chief of NOC M1Bit ltd. = If you would like to unsubscribe from this list send message to [EMAIL PROTECTED] with unsubscribe oops in message body. Archive is accessible on http://lists.paco.net/oops-rus/
Re: [OOPS] wccp - linux - oops
On Wed, 10 Oct 2001, Mark Ivanov wrote: éÍÅÌÏÓØ ××ÉÄÕ ÎÅ gre-ÐÁËÅÔÙ (ÐÒÏÔÏËÏÌ 47), Á ÕÖÅ ÄÅ-ËÁÐÓÕÌÉÒÏ×ÁÎÎÙÅ. ÄÁ ËÁË ÏËÁÚÁÌÏÓØ ÄÅ-ËÁÐÓÕÌÑÃÉÉ ÎÅÐÒÏÉÓÈÏÄÉÔ. ÷ Ó×ÑÚÉ Ó ÜÔÉÍ ÐÏÄÓËÁÖÉÔÅ ÇÄÅ ÍÏÖÎÏ ÎÁÊÔÉ ip_gre ÄÌÑ wccp v2. îÉËÏÇÄÁ ÎÅ ×ÉÄÅÌ... íÏÖÎÏ ÐÏÒÏÂÏ×ÁÔØ ÍÏÄÉÆÉÃÉÒÏ×ÁÔØ ÜÔÏÔ ÐÁÔÞ. ÎÁÓËÏÌØËÏ Ñ ÐÏÍÎÀ ÐÒÉ ÍÏÄÉÆÉËÁÃÉÉ gre.c ÐÏÄ FreeBSD ÐÒÉÛÌÏÓØ ×ÓÅÇÏ-ÌÉÛØ Õ×ÅÌÉÞÉÔØ ÎÁ ÞÅÔÙÒÅ ÂÁÊÔÁ ×ÅÌÉÞÉÎÕ ÏÔËÕÓÙ×ÁÅÍÏÇÏ ÚÁÇÏÌÏ×ËÁ (Ô.Å. ×ÌÏÖÅÎÎÙÊ ip-header ÎÁÈÏÄÉÔÓÑ ÎÁ ÞÅÔÙÒÅ ÂÁÊÔÁ ÄÁÌØÛÅ) . äÁ ÓÏÂÓÔ×ÅÎÎÏ ÐÏ ÔÅÍ tcpdumpam ×ÉÄÎÏ ÇÄÅ ÎÁÈÏÄÉÔÓÑ ×ÌÏÖÅÎÎÙÊ ip-ÚÁÇÏÌÏ×ÏË: 4500 004c 0006 ff2f 9464 c385 d00a c385 d002 883e 0080 4500 0030 | | |ÜÔÏ ÎÁÞÁÌÏ gre |Á ÜÔÏ ÎÁÞÁÌÏ ×ÌÏÖÅÎÎÏÇÏ ip c339 4000 7f06 ed56 c0a8 c822 c257 0015 060b 0050 4687 03bb 7002 4000 a74a 0204 05b4 0101 0402 õ ÍÅÎÑ ÐÒÏÓÔÏ ÎÅÔ ÐÏÄ ÒÕËÁÍÉ ÌÉÎÕËÓÁ Ó ËÔÏÒÙÍ Ñ ÍÏÇÕ ×Ó£ ÜÔÏ ÐÒÏ×ÅÒÉÔØ. # tcpdump -x -n ip proto 47 User level filter, protocol ALL, datagram packet socket tcpdump: listening on all devices 14:15:02.921021 eth0 gre-proto-0x883E (gre encap) 4500 004c 0006 ff2f 9464 c385 d00a ^^ × ÔÁËÉÈ ÖÅ ÐÒÉÍÅÒÎÏ ÕÓÌÏ×ÉÑÈ wccp - linux - squid ÒÁÂÏÔÁÅÔ. ó wccp2? ÎÅÔ =\. Igor Khasilev | PACO Links, igor at paco dot net | = If you would like to unsubscribe from this list send message to [EMAIL PROTECTED] with unsubscribe oops in message body. Archive is accessible on http://lists.paco.net/oops-rus/ Best Regards Mark N Ivanov chief of NOC M1Bit ltd. = If you would like to unsubscribe from this list send message to [EMAIL PROTECTED] with unsubscribe oops in message body. Archive is accessible on http://lists.paco.net/oops-rus/ Igor Khasilev | PACO Links, igor at paco dot net | = If you would like to unsubscribe from this list send message to [EMAIL PROTECTED] with unsubscribe oops in message body. Archive is accessible on http://lists.paco.net/oops-rus/
Re: [OOPS] wccp - linux - oops
On Tue, 9 Oct 2001, Mark Ivanov wrote:
Hello
ëÁËÉÍ ÏÂÒÁÚÏÍ ÚÁÐÕÓÔÉÔØ ÓÁÂÖÅ×ÕÀ Ó×ÑÚËÕ ?
ÎÁÐÒÉÍÅÒ
ËÏÎÆÉÇÕÒÉÍ wccp v2 ÎÁ ÒÁÕÔÅÒÅ
ÐÒÁ×ÉÍ ip_gre.c
ëÁËÉÍ ÏÂÒÁÚÏÍ ÐÒÁ×ÉÌÏÓØ?
÷ÉÄÎÙ-ÌÉ tcpdumpom ÏÔÆÏÒ×ÁÒÖÅÎÎÙÅ ip-ÐÁËÅÔÙ?
# modprobe ip_gre
# iptunnel
gre0: gre/ip remote any local any ttl inherit nopmtudisc
# ifconfig gre0 10.0.0.1 netmask 255.255.255.255 up
# /sbin/ipchains -F
# /sbin/ipchains -X
# /sbin/ipchains -A input -j ACCEPT -i lo
# /sbin/ipchains -A input -j ACCEPT -p tcp -d x.x.x.z 80
# /sbin/ipchains -A input -j ACCEPT -p tcp -d x.x.x.z 3128
# /sbin/ipchains -A input -i gre0 -p tcp -d 0.0.0.0/0 80 -j REDIRECT 3128
# cat oops.cfg
group local {
networks x.x.x/24 192.168/16 10/8 127/8;
...
redir_mods transpatent;
}
module transparent {
myport 80
}
mpodule wccp2 {
service-group port 80
router x.x.x.x
}
#sh ip wccp
Global WCCP information:
Router information:
Router Identifier: x.x.x.x
Protocol Version:2.0
Service Identifier: web-cache
Number of Cache Engines: 1
Number of routers: 1
Total Packets Redirected:0
Redirect access-list:180
Total Packets Denied Redirect: 12
Total Packets Unassigned:67
Group access-list: -none-
Total Messages Denied to Group: 0
Total Authentication failures: 0
#sh ip wccp web-cache d
WCCP Cache-Engine information:
IP Address:x.x.x.y
Protocol Version: 2.0
State: Usable
Initial Hash Info:
Assigned Hash Info:
Hash Allotment:256 (100.00%)
Packets Redirected:12
Connect Time: 00:01:02
# tcpdump -x -n ip proto 47
User level filter, protocol ALL, datagram packet socket
tcpdump: listening on all devices
14:15:02.921021 eth0 gre-proto-0x883E (gre encap)
4500 004c 0006 ff2f 9464 c385 d00a
c385 d002 883e 0080 4500 0030
c339 4000 7f06 ed56 c0a8 c822 c257 0015
060b 0050 4687 03bb 7002 4000
a74a 0204 05b4 0101 0402
14:15:05.903578 eth0 gre-proto-0x883E (gre encap)
4500 004c 0007 ff2f 9463 c385 d00a
c385 d002 883e 0080 4500 0030
c358 4000 7f06 ed37 c0a8 c822 c257 0015
060b 0050 4687 03bb 7002 4000
a74a 0204 05b4 0101 0402
14:15:11.911558 eth0 gre-proto-0x883E (gre encap)
4500 004c 0008 ff2f 9462 c385 d00a
c385 d002 883e 0080 4500 0030
c380 4000 7f06 ed0f c0a8 c822 c257 0015
060b 0050 4687 03bb 7002 4000
a74a 0204 05b4 0101 0402
14:15:23.958662 eth0 gre-proto-0x883E (gre encap)
4500 004c 0009 ff2f 9461 c385 d00a
c385 d002 883e 0080 4500 0030
c384 4000 7f06 ed0b c0a8 c822 c257 0015
0615 0050 46db d55c 7002 4000
d54a 0204 05b4 0101 0402
ÎÅ ÒÁÂÏÔÁÅÔ.
× access.log ÐÕÓÔÁ.
Best Regards
Mark N Ivanov
chief of NOC
M1Bit ltd.
=
If you would like to unsubscribe from this list send message to
[EMAIL PROTECTED] with unsubscribe oops in message body.
Archive is accessible on http://lists.paco.net/oops-rus/
Igor Khasilev |
PACO Links, igor at paco dot net |
=
If you would like to unsubscribe from this list send message to
[EMAIL PROTECTED] with unsubscribe oops in message body.
Archive is accessible on http://lists.paco.net/oops-rus/
Re: [OOPS] wccp - linux - oops
Hello
- Original Message -
From: Igor Khasilev [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, October 09, 2001 3:58 PM
Subject: Re: [OOPS] wccp - linux - oops
On Tue, 9 Oct 2001, Mark Ivanov wrote:
Hello
ëÁËÉÍ ÏÂÒÁÚÏÍ ÚÁÐÕÓÔÉÔØ ÓÁÂÖÅ×ÕÀ Ó×ÑÚËÕ ?
ÎÁÐÒÉÍÅÒ
ËÏÎÆÉÇÕÒÉÍ wccp v2 ÎÁ ÒÁÕÔÅÒÅ
ÐÒÁ×ÉÍ ip_gre.c
ëÁËÉÍ ÏÂÒÁÚÏÍ ÐÒÁ×ÉÌÏÓØ?
ÎÁËÌÁÄÙ×ÁÎÉÅÍ http://www.vsb.cz/~hal01/cache/wccp/ip_gre.patch
÷ÉÄÎÙ-ÌÉ tcpdumpom ÏÔÆÏÒ×ÁÒÖÅÎÎÙÅ ip-ÐÁËÅÔÙ?
ÎÉÖÅ.
# modprobe ip_gre
# iptunnel
gre0: gre/ip remote any local any ttl inherit nopmtudisc
# ifconfig gre0 10.0.0.1 netmask 255.255.255.255 up
# /sbin/ipchains -F
# /sbin/ipchains -X
# /sbin/ipchains -A input -j ACCEPT -i lo
# /sbin/ipchains -A input -j ACCEPT -p tcp -d x.x.x.z 80
# /sbin/ipchains -A input -j ACCEPT -p tcp -d x.x.x.z 3128
# /sbin/ipchains -A input -i gre0 -p tcp -d 0.0.0.0/0 80 -j REDIRECT 3128
# cat oops.cfg
group local {
networks x.x.x/24 192.168/16 10/8 127/8;
...
redir_mods transpatent;
}
module transparent {
myport 80
}
mpodule wccp2 {
service-group port 80
router x.x.x.x
}
#sh ip wccp
Global WCCP information:
Router information:
Router Identifier: x.x.x.x
Protocol Version:2.0
Service Identifier: web-cache
Number of Cache Engines: 1
Number of routers: 1
Total Packets Redirected:0
Redirect access-list:180
Total Packets Denied Redirect: 12
Total Packets Unassigned:67
Group access-list: -none-
Total Messages Denied to Group: 0
Total Authentication failures: 0
#sh ip wccp web-cache d
WCCP Cache-Engine information:
IP Address:x.x.x.y
Protocol Version: 2.0
State: Usable
Initial Hash Info:
Assigned Hash Info:
Hash Allotment:256 (100.00%)
Packets Redirected:12
Connect Time: 00:01:02
# tcpdump -x -n ip proto 47
User level filter, protocol ALL, datagram packet socket
tcpdump: listening on all devices
14:15:02.921021 eth0 gre-proto-0x883E (gre encap)
4500 004c 0006 ff2f 9464 c385 d00a
c385 d002 883e 0080 4500 0030
c339 4000 7f06 ed56 c0a8 c822 c257 0015
060b 0050 4687 03bb 7002 4000
a74a 0204 05b4 0101 0402
14:15:05.903578 eth0 gre-proto-0x883E (gre encap)
4500 004c 0007 ff2f 9463 c385 d00a
c385 d002 883e 0080 4500 0030
c358 4000 7f06 ed37 c0a8 c822 c257 0015
060b 0050 4687 03bb 7002 4000
a74a 0204 05b4 0101 0402
14:15:11.911558 eth0 gre-proto-0x883E (gre encap)
4500 004c 0008 ff2f 9462 c385 d00a
c385 d002 883e 0080 4500 0030
c380 4000 7f06 ed0f c0a8 c822 c257 0015
060b 0050 4687 03bb 7002 4000
a74a 0204 05b4 0101 0402
14:15:23.958662 eth0 gre-proto-0x883E (gre encap)
4500 004c 0009 ff2f 9461 c385 d00a
c385 d002 883e 0080 4500 0030
c384 4000 7f06 ed0b c0a8 c822 c257 0015
0615 0050 46db d55c 7002 4000
d54a 0204 05b4 0101 0402
^^
× ÔÁËÉÈ ÖÅ ÐÒÉÍÅÒÎÏ ÕÓÌÏ×ÉÑÈ wccp - linux - squid ÒÁÂÏÔÁÅÔ.
ÎÅ ÒÁÂÏÔÁÅÔ.
× access.log ÐÕÓÔÁ.
Best Regards
Mark N Ivanov
chief of NOC
M1Bit ltd.
=
If you would like to unsubscribe from this list send message to
[EMAIL PROTECTED] with unsubscribe oops in message body.
Archive is accessible on http://lists.paco.net/oops-rus/
Igor Khasilev |
PACO
