Squid, WCCP and Cisco Zone Policy firewall on cisco 2801 router

Posted on 2013-01-14
Medium Priority
Last Modified: 2013-01-28
Hi there,

I am looking for a howto that will help me to setup squid server with wccp on cisco router that has been configured with zone policy firewall. Here is some info:
LAN network Trusted zone
gateway on interface fa0/1
NAT to internet IP on fa0/0 internet zone
squid IP:
OS Ubuntu 12.04 with IP:

Please let me know if you need more information
Thank you all very much in advance
Question by:SAM_HALLOUM
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 62

Expert Comment

ID: 38785215
You do not need WCCP.
You do not need WCCP.
You do not need WCCP.

I dont get how you want to yse 256 IP addres for squid.

Author Comment

ID: 38787628
Sure I understand that it can be configured without the WCCP, but I am only interested in WCCP configuration so that the Cisco router can forward back the web traffic to the squid server.

Thanks anyway

Accepted Solution

SAM_HALLOUM earned 0 total points
ID: 38811719
This document works for me, the only thing I changed was the gre interface I use those commands to bind gre interface and added them to /etc/rc..local
#modprobe ip_gre
#ip addr add dev gre0
#ip link set gre0 up

Author Closing Comment

ID: 38826191
I figured it out on my own The document I mentioned above was this:

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are two basic ways to configure a static route for Cisco IOS devices. I've written this article to highlight a case study comparing the configuration of a static route using the next-hop IP and the configuration of a static route using an outg…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question