Squid3 integration with CISCO WCCP through GRE tunnel - HELP needed!!!
-
Hi All,
This is my first post on pfsense forum. Hope to make it more clearer to understand.
What I'm trying to doing is install pfsense as a squid proxy which will act as a traffic monitoring tool. So that I can configure delay pools, time based ACLs etc. for the traffic as well.
Following is the scenario I'm trying with CISCO WCCP.
I've referred the article here - http://www.crypt.gen.nz/papers/cisco_squid_wccp.html and installed a general squid and succeeded on debian.
Up to now, I've configured the GRE tunnel using the pfsense GUI. And CISCO router is identifying pfsense IP as a WCCP client and redirecting all the HTTP traffic to GRE tunnel. (sh ip wccp web-cache detail)
Attaching GRE tunnel settings
But the problem is when I'm listening on gre0 using tcpdump nothing can be seen from the pfsense end.
Update: I found that GRE tunnel is delivering packets to the pfsense box through the em0 interface using following tupdump output..
20:35:00.963609 IP 192.168.1.254 > pfSense.localdomain: GREv0, length 68: gre-proto-0x883e
So the problem is may be with the decapsulation process.. Will try to find something
Please reply if anyone is familiar with the integration… ??? ???
I also gone through this forum and found this thread which no one replied about a proper way - http://forum.pfsense.org/index.php/topic,16880.0.html
Thanks,
-
Hi All found this article - http://fakrul.wordpress.com/2008/12/11/transparent-squid-proxy-server-with-wccp-support/#comment-1754
It seems we have to recompile the kernel to implement this… :o