On Sun, Jan 19, 2014 at 12:08 AM, Arrakis <arrakistor_at_gmail.com> wrote:
>
> I have a box running a single instance of squid. Assigned to this box are multiple /29 and a /24 across different networks. I have setup squid to use a single ingress (http_port) IP address on the /24, and set the egress (tcp_outgoing_address) IPs via ACL to randomly select an outbound IP from the entire range of assignments. Unfortunately, squid will only send traffic out the /24 or the primary IP of the box. I have tried setting ingresses on the other /29s and sending traffic through them, but squid persists in sending all traffic through the /24 or primary IP regardless. I have seen many others with this same issue, but no solutions that use a single squid instance without child proxies. Suggestions would be appreciated. My excerpted configuration is here: https://privatepaste.com/621ade44d6
What is the default gateway of this box ? The outgoing traffic (which
is not meant for any of the connected networks) will always leave
through the interface connected to the default gateway.
In case you want to have multiple outgoing addresses belonging to the
same subnet on an interface, you just have to ensure that the default
gateway belongs to that subnet so that the traffic always leaves
through it.
For example if you have a subnet a.b.c.0/29 where a.b.c.1 is the
gateway, you can assign the following IPs to the external interface of
the system (and use the same in ACLs for tcp_outgoing_address):
a.b.c.2
a.b.c.3
a.b.c.4
a.b.c.5
a.b.c.6
and specify a.b.c.1 as the default gateway of the system.
However, if you have IP addresses belonging to different subnets
(a.b.c.0/29 and a.b.d.0/29), you will have multiple gateways and you
will have to configure routing accordingly. You can refer to the LARTC
HOWTO for detailed steps:
http://www.lartc.org/howto/lartc.rpdb.multiple-links.html
HTH,
Manish
Received on Mon Jan 20 2014 - 23:26:05 MST
This archive was generated by hypermail 2.2.0 : Tue Jan 21 2014 - 12:00:11 MST