Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1501
Views
0
Helpful
0
Replies

Web Caching Communication Protocol with Squid Proxy - Spoofing Source IP Address

Key98
Level 1
Level 1

‎09-11-2020 06:54 AM - edited ‎09-11-2020 09:12 AM

Hi All,

I have some strange behaviour here that I was hoping somebody might be able to help me with - this has been driving nuts for a couple of weeks now!

 

I have a small lab environment which consists of a Cisco 2800 router, a Squid web proxy and a client machine - as simple as it gets, really. I'm trying to use WCCP to redirect traffic to the Squid Proxy as it leaves the network, and then back to the Squid proxy as it ingresses back to the network. I have set the Squid Proxy up so that it will spoof the IP address of the source client as it leaves the network.

 

The issue is that I cannot seem to get this working once I make the second redirect group for redirecting traffic as it comes back into the network! It seems like the PROXY90 ACL is denying traffic but I cannot understand why.

 

I have attached all relevant WCCP config on the Cisco side and have attached a couple of TCPdumps from trying to access a http website with the Squid proxy intercepting traffic - the TCPdumps are from the Squid Proxies POV.

 

I will also attach a quick network diagram for context.

 

Any help would be greatly appreciated. If you need any extra information I would be happy to provide it! 

 

Cheers,

Callum 

Labels:
wccp_config.zip
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents