I think that the router's okay and your squid needs adjustment.
My system only has one GRE device, not two.
iptables -t nat -nvL has
3499K 197M DNAT tcp -- wccp0 * 0.0.0.0/00.0.0.0/0
tcp dpt:80 to:203.15.226.132:3128
95 4592 REDIRECT tcp --
properly solved this, or heard from google themselves on the matter?
Thank you!
--
Daniel Rose
National Library of Australia
But there was no answer.
./configure says
A helper that fails one of the Authentication steps can allow squid to
still authenticate the user.
Does this mean that I'll try ntlm auth, but even if it fails I'll let you
through anyway?
I too desire this behaviour!
--
Daniel Rose
National Library
is acceptable for a FQDN. Your link to facebook
worked fine for me, and I would assume that you get these attempts because people are
using to ending a type phrase with a full stop ENTER sequence.
Howard
--
Daniel Rose
National Library of Australia
package during the
installation, so it should work right out of the box.
--
Daniel Rose
National Library of Australia
to launch a browser to hit your page
as a diagnostic poll to see if their connection is still up.
Having said all that, awstats will probably do what you want it to.
Cheers!
--
Daniel Rose
National Library of Australia
$CISCO_IP local $HOST_IP dev eth0
/sbin/ifconfig wccp0 $HOST_IP netmask 255.255.255.255 up
It works perfectly. However, they say that you should know it will work
because it is right, not assume it is right because it works!
Anyway, I hope it's right.
--
Daniel Rose
National Library of Australia
be on the same interface
of the firewall. If you try to make a dmz with the proxy, and use wccp on the
firewall between the dmz and the clients, it won't work.
If any of this is wrong I'd love to know as well, as these are my working
understandings of the system.
--
Daniel Rose
National
Bruno Lopes de Souza Benchimol wrote:
You probably can try to disable the unicast RPF feature on the ASA, i know
how to it works on Routers but its probably pretty similar to the ASA Series
(i also do not have one for testing... i wish i could), altough thats not
the Best method because it
. I will push google a bit harder before I give up though.
--
Daniel Rose
National Library of Australia
seems to support only
wccp2, not version 1.
I can put the proxy on the inside network, but I would prefer it on the DMZ if
at all possible.
Thanks for any advice!
--
Daniel Rose
National Library of Australia
Adrian Chadd wrote:
Didn't someone point out a few weeks ago that Cisco only support wccp
redirection on
the same interface as clients?
I hope so! If so, could someone pipe up again please? I can't find any support
for this idea from cisco.
the ASA is probably (quite rightly, its a
Tony Dodd wrote:
Daniel Rose wrote:
SQUID (linux kernel 2.6.18.xxx) Sends a spoofed ACK 'from' WWWHOST to
CLIENT.
The spoofed ACK never arrives at the CLIENT. CLIENT just sends 3 SYNs
and times out. I assume it's dropped by the firewall, but I can't get
'debug ip packet' or similar
13 matches
Mail list logo
