I am using the myip ACL and the tcp_outgoing_address directive so that
my Squid configuration can have multiple IP addresses like the
following (full configuration at the very end of message):
acl ip1 myip 1.1.1.1
acl ip2 myip 2.2.2.2
acl ip3 myip 3.3.3.3
tcp_outgoing_address 1.1.1.1 ip1
tcp_outgoing_address 2.2.2.2 ip2
tcp_outgoing_address 3.3.3.3 ip3
If I use proxy IP address 1.1.1.1 to visit www.website.com and then
use proxy IP address 2.2.2.2 to visit www.website.com less than 5
seconds later, both visits are recorded as 1.1.1.1. However, if I wait
5+ seconds between using 1.1.1.1 and 2.2.2.2 to visit www.website.com,
then www.website.com correctly records one hit from 1.1.1.1 and one
hit from 2.2.2.2.
Basically, I need to configure Squid so that if I use 1.1.1.1 and then
2.2.2.2 to connect to www.website.com in a span of less than 5
seconds, each IP address is recoreded.
I'm guessing there is some timeout or similar configuration that I am
missing that is causing this. Can anyone point me in the right
direction?
I am using Squid 2.6.STABLE21 on CentOS 5.6.
Thanks in advance.
-Ron
---------
Full squid.conf configuration
---------
http_port 8080
# OPTIONS WHICH AFFECT THE NEIGHBOR SELECTION ALGORITHM
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
# OPTIONS WHICH AFFECT THE CACHE SIZE
cache_mem 1 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 1 MB
maximum_object_size_in_memory 50 KB
cache_replacement_policy heap LFUDA
# LOGFILE PATHNAMES AND CACHE DIRECTORIES
cache_dir aufs /squid/919191-919191 5 16 256
access_log /var/log/squid/access.log squid
pid_filename /var/run/squid-919191-919191.pid
# OPTIONS FOR EXTERNAL SUPPORT PROGRAMS
hosts_file /etc/hosts
# OPTIONS FOR TUNING THE CACHE
refresh_pattern . 0 20% 4320
quick_abort_min 0 KB
quick_abort_max 0 KB
# TIMEOUTS
half_closed_clients off
persistent_request_timeout 0 seconds
# ACCESS CONTROLS
acl ip1 myip 1.1.1.1
acl ip2 myip 2.2.2.2
acl ip3 myip 3.3.3.3
acl ipauth src 1.2.3.4
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl Safe_ports port 80 443
acl CONNECT method CONNECT
acl blocked_urls dstdomain "/etc/squid/blocked_urls"
acl blocked_regex url_regex "/etc/squid/blocked_regex"
http_access deny blocked_urls
http_access deny blocked_regex
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !Safe_ports
http_access allow ipauth
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all
tcp_outgoing_address 1.1.1.1 ip1
tcp_outgoing_address 2.2.2.2 ip2
tcp_outgoing_address 3.3.3.3 ip3
# MISCELLANEOUS
logfile_rotate 10
memory_pools off
forwarded_for off
log_icp_queries off
client_db off
buffered_logs on
header_access X-Forwarded-For deny all
header_access Proxy-Connection deny all
header_access Via deny all
header_access Cache-Control deny all
header_access All allow all
# DELAY POOL PARAMETERS (all require DELAY_POOLS compilation option)
coredump_dir /squid/919191-919191
##5Mbps
delay_pools 1
delay_class 1 1
delay_parameters 1 655360/655360
delay_access 1 allow all
Received on Wed Jun 15 2011 - 13:59:15 MDT
This archive was generated by hypermail 2.2.0 : Thu Jun 16 2011 - 12:00:02 MDT