[squid-users] WCCP + Squid with Cisco 2811. Not working

Hello Everyone!

I seem to be very close to getting this to work, but I'm running into some
problems. First I'll explain my background story.

I need a transparent proxy and the proxy server will need to be able to
view the client's IP address. I currently have a sonicwall router which
forwards all web traffic to the proxy. This is transparent and it works,
but it gives the sonicwall ip address as the client's ip address. I cannot
see who went to what.

I was told WCCP will maintain the source ip address. I've been following
this tutorial almost strictly word by word:
http://www.digitalnerds.net/linux/transparent-squid-with-wccp/

The only thing I changed is that I am using wccpv2 instead of 1. When I
enable wccp on the router I can no longer download web pages, but I can
ping the web servers. On the router side I do see traffic going through as
CEF when I do a "show ip wccp". On the linux server side I also see gre1
encapsulation packets on the gre interface and I also get entrys in my
cache.log for squid, but I don't know what they mean:

   1.
      2010/09/03 14:46:55| Preparing for shutdown after 96 requests
   2.
      2010/09/03 14:46:55| Waiting 30 seconds for active connections to
finish
   3.
      2010/09/03 14:46:55| FD 12 Closing HTTP connection
   4.
      2010/09/03 14:46:55| FD 14 Closing WCCP socket
   5.
      2010/09/03 14:47:05| Shutting down...
   6.
      2010/09/03 14:47:05| FD 13 Closing ICP connection
   7.
      2010/09/03 14:47:05| Closing unlinkd pipe on FD 10
   8.
      2010/09/03 14:47:05| storeDirWriteCleanLogs: Starting...
   9.
      2010/09/03 14:47:05| Finished. Wrote 3901 entries.
  10.
      2010/09/03 14:47:05| Took 0.0 seconds (297672.6 entries/sec).
  11.
      CPU Usage: 0.256 seconds = 0.148 user + 0.108 sys
  12.
      Maximum Resident Size: 0 KB
  13.
      Page faults with physical i/o: 0
  14.
      Memory usage for squid via mallinfo():
  15.
              total space in arena: 2520 KB
  16.
              Ordinary blocks: 2409 KB 13 blks
  17.
              Small blocks: 0 KB 5 blks
  18.
              Holding blocks: 280 KB 1 blks
  19.
              Free Small blocks: 0 KB
  20.
              Free Ordinary blocks: 110 KB
  21.
              Total in use: 2689 KB 96%
  22.
              Total free: 110 KB 4%
  23.
      2010/09/03 14:47:05| logfileClose: closing log
/var/log/squid/store.log
  24.
      2010/09/03 14:47:05| Squid Cache (Version 2.7.STABLE3): Exiting
normally.
  25.
      2010/09/03 14:47:07| Starting Squid Cache version 2.7.STABLE3 for
i386-debian-linux-gnu...
  26.
      2010/09/03 14:47:07| Process ID 9208
  27.
      2010/09/03 14:47:07| With 1024 file descriptors available
  28.
      2010/09/03 14:47:07| Using epoll for the IO loop
  29.
      2010/09/03 14:47:07| DNS Socket created at 0.0.0.0, port 60875, FD 6
  30.
      2010/09/03 14:47:07| Adding domain from /etc/resolv.conf
  31.
      2010/09/03 14:47:07| Adding nameserver 10.128.0.254 from
/etc/resolv.conf
  32.
      2010/09/03 14:47:07| Adding nameserver 10.131.0.254 from
/etc/resolv.conf
  33.
      2010/09/03 14:47:07| User-Agent logging is disabled.
  34.
      2010/09/03 14:47:07| Referer logging is disabled.
  35.
      2010/09/03 14:47:07| Unlinkd pipe opened on FD 10
  36.
      2010/09/03 14:47:07| Swap maxSize 102400 KB, estimated 7876 objects
  37.
      2010/09/03 14:47:07| Target number of buckets: 393
  38.
      2010/09/03 14:47:07| Using 8192 Store buckets
  39.
      2010/09/03 14:47:07| Max Mem size: 8192 KB
  40.
      2010/09/03 14:47:07| Max Swap size: 102400 KB
  41.
      2010/09/03 14:47:07| Local cache digest enabled; rebuild/rewrite
every 3600/3600 sec
  42.
      2010/09/03 14:47:07| logfileOpen: opening log
/var/log/squid/store.log
  43.
      2010/09/03 14:47:07| Rebuilding storage in /var/spool/squid (CLEAN)
  44.
      2010/09/03 14:47:07| Using Least Load store dir selection
  45.
      2010/09/03 14:47:07| Set Current Directory to /var/spool/squid
  46.
      2010/09/03 14:47:07| Loaded Icons.
  47.
      2010/09/03 14:47:08| Accepting transparently proxied HTTP
connections at 0.0.0.0, port 3128, FD 12.
  48.
      2010/09/03 14:47:08| Accepting ICP messages at 0.0.0.0, port 3130,
FD 13.
  49.
      2010/09/03 14:47:08| HTCP Disabled.
  50.
      2010/09/03 14:47:08| WCCP Disabled.
  51.
      2010/09/03 14:47:08| Accepting WCCPv2 messages on port 2048, FD 14.
  52.
      2010/09/03 14:47:08| Initialising all WCCPv2 lists
  53.
      2010/09/03 14:47:08| Ready to serve requests.
  54.
      2010/09/03 14:47:08| Done reading /var/spool/squid swaplog (3901
entries)
  55.
      2010/09/03 14:47:08| Finished rebuilding storage from disk.
  56.
      2010/09/03 14:47:08| 3901 Entries scanned
  57.
      2010/09/03 14:47:08| 0 Invalid entries.
  58.
      2010/09/03 14:47:08| 0 With invalid flags.
  59.
      2010/09/03 14:47:08| 3901 Objects loaded.
  60.
      2010/09/03 14:47:08| 0 Objects expired.
  61.
      2010/09/03 14:47:08| 0 Objects cancelled.
  62.
      2010/09/03 14:47:08| 0 Duplicate URLs purged.
  63.
      2010/09/03 14:47:08| 0 Swapfile clashes avoided.
  64.
      2010/09/03 14:47:08| Took 0.4 seconds (11008.4 objects/sec).
  65.
      2010/09/03 14:47:08| Beginning Validation Procedure
  66.
      2010/09/03 14:47:08| Completed Validation Procedure
  67.
      2010/09/03 14:47:08| Validated 3901 Entries
  68.
      2010/09/03 14:47:08| store_swap_size = 92096k
  69.
      2010/09/03 14:47:08| storeLateRelease: released 0 objects

I'm not sure where to go from here. It looks like everythings working, but
it obviously is not. Is there anything else I can try? Any other ways to
help me debug this?

Thanks in advance!

___________________________
Chris Abel
Systems and Network Administrator
Wildwood Programs
2995 Curry Road Extension
Schenectady, NY 12303
518-836-2341
Received on Tue Sep 07 2010 - 17:54:49 MDT