tis 2007-06-12 klockan 10:16 -0500 skrev Van Der Hart, Kevin:
> I have determined what is happening but am not sure what to do to fix
> the problem. I ran tcpdump on my client and it sent 3 SYN requests. I
> saw 378 SYN requests come in my GRE interface and saw 375 SYN requests
> go out my ETH interface with a source IP of the client address. Since
> the source address is not the Squid machine, WCCP is sending them back
> to me again. Is Linux forwarding these packets acting as a router or
> does Squid use the client IP address in its request to contact the
> real web server?
Then your iptables rule is not intercepting the packet.
Triple check your nat rules again
iptables-save -t nat
remember that these SYNs is coming on on the gre interface, not eth.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Sun Jul 01 2007 - 12:00:04 MDT