<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p>I can explain a bit more.</p>
<p>For DNS interception (to Unbound, of course) I'm using PBR:</p>
<p>ip access-list extended intercept-ports<br>
permit udp any any eq domain<br>
permit tcp any any eq domain<br>
deny ip any any<br>
!<br>
!<br>
route-map redirect_dns permit 30<br>
match ip address intercept-ports<br>
set ip next-hop 192.168.200.3<br>
!<br>
</p>
<p>which processes on router CPU and sometimes overload them.</p>
<p>WCCP, instead, processes on control plane, and not touch CPU to
process.</p>
<p>Also, WCCP is fully transparent.</p>
<p>Why Unbound? This is simple. Because of we're use it as best
caching DNS server in our production infrastructure.<br>
</p>
<p>Well, if Unbound becomes fat - why not makes WCCP as configurable
non-default module, which will build on-demand, for such idiots
like me?</p>
<p>Anyway. WCCP is caching related. Unbound is caching related. Why
not works <span class="gt-baf-term-text"><span class="gt-baf-cell
gt-baf-word-clickable">together?</span></span></p>
<p><span class="gt-baf-term-text"><span class="gt-baf-cell
gt-baf-word-clickable"><span class="tlid-translation
translation"><span title="" class="">That would be logical,
wouldn’t it?</span></span></span></span></p>
<div class="moz-cite-prefix">07.03.2019 22:19, Yuri пишет:<br>
</div>
<blockquote type="cite"
cite="mid:e2f14179-9e23-d8c2-11b9-e24194d149c9@gmail.com">
<pre class="moz-quote-pre" wrap="">
07.03.2019 22:14, Anand Buddhdev пишет:
</pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">Hi Yuri,
Your question would be better if you:
1. describe what WCCPv2 is; and
</pre>
</blockquote>
<pre class="moz-quote-pre" wrap="">
<a class="moz-txt-link-freetext" href="http://cauew.blogspot.com/2008/08/wccp-web-cache-communication-protocol.html">http://cauew.blogspot.com/2008/08/wccp-web-cache-communication-protocol.html</a>
<a class="moz-txt-link-freetext" href="https://www.cisco.com/c/en/us/tech/content-networking/web-cache-communications-protocol-wccp/index.html">https://www.cisco.com/c/en/us/tech/content-networking/web-cache-communications-protocol-wccp/index.html</a>
<a class="moz-txt-link-freetext" href="https://en.wikipedia.org/wiki/Web_Cache_Communication_Protocol">https://en.wikipedia.org/wiki/Web_Cache_Communication_Protocol</a>
</pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">
2. explain why you need it in Unbound.
</pre>
</blockquote>
<pre class="moz-quote-pre" wrap="">
WCCP supports not only 80 port, but also 53 (and any arbitrary port) ans
very useful for transparent interception any traffic and locally cache
it on separate server.
Thus, technology can drastically reduce outboud internet traffic and/or
increases LAN security.
</pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">
Not everyone knows what WCCPv2 is, and why would might want it.
</pre>
</blockquote>
<pre class="moz-quote-pre" wrap="">No one can Google? Seriously? :-D You jokinly me!
</pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">
Regards,
Anand
On 07/03/2019 16:49, Yuri via Unbound-users wrote:
</pre>
<blockquote type="cite">
<pre class="moz-quote-pre" wrap="">Hi,
I would like to see WCCPv2 support in Unbound.
Is it possible? Or still not?
WBR, Yuri
</pre>
</blockquote>
</blockquote>
</blockquote>
<pre class="moz-signature" cols="72">--
"C++ seems like a language suitable for firing other people's legs."
*****************************
* C++20 : Bug to the future *
*****************************</pre>
</body>
</html>