[squid-users] Transparent Proxy

Jaydeep Kubavat jaykbvt at gmail.com
Wed Apr 8 09:20:51 UTC 2015 

Hi,

I've configured a transparent squid proxy on a centos 6.6 with single NIC.

There is Cisco ISG in between with L4 redirection on www traffic.

The requests are coming on port 80 from client and ISG forwards that to
port 80 on my squid server.

So there is no iptables configured on squid server.

Client requests are not reaching upto my squid instance.

I'm getting the following in pcap on squid box.

=========================

"129","79.114808","10.210.83.246","10.58.200.33","TCP","76","39546→80 [SYN]
Seq=0 Win=14600 Len=0 MSS=1360 SACK_PERM=1 TSval=2686675 TSecr=0 WS=64"

"130","79.114946","10.58.200.33","10.210.83.246","TCP","76","80→39546 [SYN,
ACK] Seq=0 Ack=1 Win=14480 Len=0 MSS=1460 SACK_PERM=1 TSval=509402603
TSecr=2686675 WS=64"

"145","82.115674","10.210.83.246","10.58.200.33","TCP","76","[TCP Spurious
Retransmission] 39546→80 [SYN] Seq=0 Win=14600 Len=0 MSS=1360 SACK_PERM=1
TSval=2686976 TSecr=0 WS=64"

"146","82.115748","10.58.200.33","10.210.83.246","TCP","76","[TCP
Retransmission] 80→39546 [SYN, ACK] Seq=0 Ack=1 Win=14480 Len=0 MSS=1460
SACK_PERM=1 TSval=509405604 TSecr=2686675 WS=64"

"151","83.113859","10.58.200.33","10.210.83.246","TCP","76","[TCP
Retransmission] 80→39546 [SYN, ACK] Seq=0 Ack=1 Win=14480 Len=0 MSS=1460
SACK_PERM=1 TSval=509406603 TSecr=2686675 WS=64"

"165","88.145376","10.210.83.246","10.58.200.33","TCP","76","[TCP Spurious
Retransmission] 39546→80 [SYN] Seq=0 Win=14600 Len=0 MSS=1360 SACK_PERM=1
TSval=2687578 TSecr=0 WS=64"

"166","88.145450","10.58.200.33","10.210.83.246","TCP","76","[TCP
Retransmission] 80→39546 [SYN, ACK] Seq=0 Ack=1 Win=14480 Len=0 MSS=1460
SACK_PERM=1 TSval=509411634 TSecr=2686675 WS=64"

"176","89.113837","10.58.200.33","10.210.83.246","TCP","76","[TCP
Retransmission] 80→39546 [SYN, ACK] Seq=0 Ack=1 Win=14480 Len=0 MSS=1460
SACK_PERM=1 TSval=509412603 TSecr=2686675 WS=64"

"285","101.113833","10.58.200.33","10.210.83.246","TCP","76","[TCP
Retransmission] 80→39546 [SYN, ACK] Seq=0 Ack=1 Win=14480 Len=0 MSS=1460
SACK_PERM=1 TSval=509424603 TSecr=2686675 WS=64"

=========================

my squid is configured default, only

http_port 3130
http_port 80 intercept

are changed.



-- 
Thanks & Regards
Jaykbvt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20150408/0a8cac11/attachment.html>

More information about the squid-users mailing list