- 论坛徽章:
- 0
|
最近在公司部署了web cache.结果cisco switch+wccp.现在透明带来并且web cache都已经搞定,就是QQ无法登陆...老是提示服务器超市...有什么办法可以让QQ登陆成功呢???下面是我的配置:
- bash# more /etc/pf.conf
- rdr on re0 inet proto tcp from any to any port www -> 127.0.0.1 port 3128
- rdr on re0 inet proto tcp from any to any port 443 -> 127.0.0.1 port 3128
- rdr on re0 inet proto udp from any port 4000 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4001 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4002 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4003 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4004 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4005 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4006 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4007 to any port 8000 -> 0/32
- rdr on re0 inet proto udp from any port 4008 to any port 8000 -> 0/32
- bash# more /usr/local/etc/squid/squid.conf
- 文件太大,copy了主要部分:
- #
- acl SSL_ports port 443
- acl Safe_ports port 80 # http
- acl Safe_ports port 21 # ftp
- acl Safe_ports port 443 # https
- acl Safe_ports port 70 # gopher
- acl Safe_ports port 210 # wais
- acl Safe_ports port 1025-65535 # unregistered ports
- acl Safe_ports port 280 # http-mgmt
- acl Safe_ports port 488 # gss-http
- acl Safe_ports port 591 # filemaker
- acl Safe_ports port 777 # multiling http
- acl CONNECT method CONNECT
- http_access allow manager localhost
- http_access deny manager
- wccp2_router x.x.x.x
- wccp2_router x.x.x.x:2048
- #wccp2_rebuild_wait on
- wccp2_forwarding_method 2
- wccp2_return_method 2
- wccp2_assignment_method 2
- wccp2_service standard 0
- wccp2_service dynamic 80
- wccp2_service_info 80 protocol=tcp flags=src_ip_hash,ports_source priority=100 ports=80
- wccp2_address x.x.x.x
复制代码
QQ登陆时有这样的信息:
TCP_DENIED/400 1519 NONE NONE:// - NONE/- text/html
TCP_DENIED/400 1519 NONE NONE:// - NONE/- text/html
这个是不是和QQ的数据包有关系?麻烦各位大哥帮小弟解决一下!!
谢谢啦! |
|