Hi, I have the following configuration on my NAT box
eth0 to an internal private network consisiting of 2 subnets
192.168.2.0/24 and 192.168.3.0/24. The NAT box has .1 address in both
subnet and is the gateway for everybody
eth1 is connected to an ADSL modem which I obtain an $ADSL_IP via ppp
eth2 is connected to a routable Ethernet interface $ETH_2
Using policy routing/netfilter I am able to SNAT 192.168.2.0/24 to
ADSL_IP via eth1 and 192.168.3.0/24 to $ETH_2
I have squid setup to listen on 192.168.2.1 and 192.168.3.1 on the NAT
box. I thought I could use tcp_outgoing_address to do this
acl net_1 src 192.168.2.0/255.255.255.0
acl net_2 src 192.168.3.0/255.255.255.0
tcp_outgoing_address 192.168.2.1 net_1
tcp_outgoing_address 192.168.3.1 net_2
However, my clients either on 192.168.2.0/24 nor on 192.168.3.0/24 are
able to reach any website with these lines in the config file
If I remove the tcp_outgoing_address lines, then I am able to reach
websites via squids
Any insights would be appreciated, Thanks Yusuf
Received on Tue Jul 08 2003 - 04:33:18 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:53 MST