Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2783
Views
0
Helpful
6
Replies

Squid Proxy Server with Cisco Router

Hamidsattarrana
Level 1
Level 1

‎02-04-2020 09:44 AM

Dear All!

I need some guide to configure squid proxy server with cisco router.

I have 1 Cisco router installed in our network CIsco 3845. IP is 192.168.10.1

Squid Proxy Server is in our LAN Network IP is 192.168.10.100

 

I want to configure it. I want all traffic from Network 192.168.10.0/24 go through Proxy Server 192.168.10.100 then go to Internet.

 

What configurations I have to do on Router?

Kindly Guide.

 

Thanks.

 

Labels:
0 Helpful
6 Replies 6

marce1000
Hall of Fame
Hall of Fame

‎02-04-2020 10:10 AM

 

 - Squid supports WCCM  , below is an example of how to set it up on  a CISCO router :

         https://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/118242-configure-wsa-00.html

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Hamidsattarrana
Level 1
Level 1
In response to marce1000

‎02-22-2020 01:11 AM

Hi!
I have configured an ACL to match dns, http & https traffic. Then I am doing PBR next-hop to Transparent Squid Proxy Server (192.168.2.1).
ACL is:
Ip access-list extended web
permit ip any any eq www
permit ip any any eq 443
permit ip any any eq domain
exit
route-map web
match ip add web
set ip next-hop 192.168.2.1
exit
Web traffic is routing to proxy server.

But the strange thing is that proxy server is blocking only http and there is no access logs for https?

I don't know much about wccp or wccp2. My IOS supports Wccp features. But don't know exactly how to implement it.
And does wccp redirect "https" Secure http?

Need suggestion?
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎02-04-2020 03:27 PM

here is the good guide for Squid proxy config along with router config

 

https://wiki.squid-cache.org/Features/Wccp2

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Hamidsattarrana
Level 1
Level 1
In response to balaji.bandi

‎02-24-2020 02:34 AM

Does it work with https? Secure Http
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to Hamidsattarrana

‎02-24-2020 10:41 AM

depends on your requirement, and WCCP redirection.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Seb Rupik
VIP Alumni
VIP Alumni
In response to Hamidsattarrana

‎02-24-2020 11:31 PM

As a side note, some squid installation packages are not compiled with the correct flags to permit SSL decryption and caching. Confirm this with the command:

squid -v

...you are looking for '--with-openssl' and '--enable-ssl-crtd'

 

I wrote a blog post about it recently:

https://cs7networks.co.uk/2020/02/17/squid-ssl-decryption-with-freebsd/

 

cheers,

Seb.

0 Helpful
Customers Also Viewed These Support Documents