[squid-users] squid 3.5.19, wccp2, pf and forwarding loop

Mark Davies mark at ecs.vuw.ac.nz
Mon May 23 10:02:39 UTC 2016

On 23/05/16 19:32, Amos Jeffries wrote:
> There are two other things to check then.
> Firstly, if the router receiving the wm0 traffic is the one doing WCCP
>   divert into Squid. It needs a similar excemption of that outgoing traffic.

Its a different router.

> Secondly,
>   in squid.conf enable "debug_options 28,4" and see what it logs in
> cache.log about the bnx0 interface.
>   I suspect Squid might be detecting it as a non-Ethernet interface and
> so not pulling the IP details correctly from the NAT.

Given the amount of ordinary squid traffic going through the box it was
difficult to separate the log entries for the intercepted traffic from 
all the others, but this did point me at "debug_options 89,9" which 
showed me the actual problem.

When building I had "--enable-pf-transparent" but not
"--with-nat-devpf".  Adding the second fixed the problem.


More information about the squid-users mailing list