Re: lug-bg: zor sas SQUID
,ipropute2 GW1, : ip r a default via a.b.c.d src a.b.c.e table ISP1 ip r a default via w.x.y.z src x.x.x.x table ISP2 ip ru add from x.x.x.x table ISP2 prio 1 ip ru add table ISP1 prio 2 SQUID-a tcpoutgoing_address x.x.x.x - SQUID-a ISP2 ISP1
Re: lug-bg: zor sas SQUID
Dean Stoeff wrote: - : tcp_outgoing_address x.x.x.x SQUID 2.5 Dobre de moje i da gre6a ama nestva li i po sledniq na4in: razdelqsh na 2 interface-a na local net-a(GW2:2) kato prez ediniq prekarvash trafika na tezi useri koito 6te polzvat squida i dobavqsh default route za tozi interface kam BTK-to, ostanalite koito ti sa na interface GW2 sa si s default route GW1. Moje i da gresha ako e taka sorry
Re: lug-bg: zor sas SQUID
On Friday 17 June 2005 16:41, Peko wrote: Dean Stoeff wrote: - : tcp_outgoing_address x.x.x.x SQUID 2.5 Dobre de moje i da gre6a ama nestva li i po sledniq na4in: razdelqsh na 2 interface-a na local net-a(GW2:2) kato prez ediniq prekarvash trafika na tezi useri koito 6te polzvat squida i dobavqsh default route za tozi interface kam BTK-to, ostanalite koito ti sa na interface GW2 sa si s default route GW1. Moje i da gresha ako e taka sorry , - ! -- Cyberly yours, Petar Nedyalkov Devoted Orbitel Fan :-) PGP ID: 7AE45436 PGP Public Key: http://bu.orbitel.bg/pgp/bu.asc PGP Fingerprint: 7923 8D52 B145 02E8 6F63 8BDA 2D3F 7C0B 7AE4 5436 pgpm6ToSnCTTV.pgp Description: PGP signature
Re: lug-bg: zor sas SQUID
default GW1. tcp_outgoing_address: # TAG: tcp_outgoing_address # Allows you to map requests to different outgoing IP addresses # based on the username or sourceaddress of the user making # the request. # # tcp_outgoing_address ipaddr [[!]aclname] ... # # Example where requests from 10.0.0.0/24 will be forwareded # with source address 10.1.0.1, 10.0.2.0/24 forwarded with # source address 10.1.0.2 and the rest will be forwarded with # source address 10.1.0.3. :GW !, source address.source address- 3, GW1 ( GW1 default). , source addres3GW3, GW1. : 2 IP ( gw)2- ( IP1, IP2). , GW IP1 IP2default., IP1 IP2, , IP2 GW2 ( GW1 default). GW3, . : .
Re: lug-bg: zor sas SQUID
- : tcp_outgoing_address x.x.x.x SQUID 2.5
Re: lug-bg: zor sas SQUID {to Evgeni Genchev}
On Sunday 12 June 2005 01:52, Evgeni Gechev wrote: ggg wrote: aa tui dobre ama az imam oshte procesi deto sa sobstvennost na nobody i imat trrafik (apacha naprimer - toi ima paketi ot vsi4ki GWs kum i ot nego) kakvo shte stane s tiah ? g. squid- (user nobody): iptables -t mangle -A OUTPUT -m owner --uid-owner nobody -j MARK --set-mark 0x01 ip r a via GW3 t 253 ip ru a from tcp_outgoing_address_NA_SQUIDA fwmark 0x01 t 253 __ Yahoo! Mail Stay connected, organized, and protected. Take the tour: http://tour.mail.yahoo.com/mailtour.html user- squid- , ?:) : ip ru add from $ip t 100 ip r a default via $gw t 100 $ip - ADSL $gwADSL tables IP FORWARD . -- =+==+==+==+==+==+==+==+==+==+==+==+= Dragomir Zhelev Network Administrator IT Support Varna,Bulgaria [EMAIL PROTECTED] =+==+==+==+==+==+==+==+==+==+==+==+=
Re: lug-bg: zor sas SQUID
ne razbrah za kakvo pravilo govorish ako prenatna localnata mreja da moje da izliza prez GW3 shte ima problem kogato usera mahne proxy-to niama da moje da izlezne prez default GW g. --- Momchil Ivanov [EMAIL PROTECTED] wrote: On 6/9/05, ggg [EMAIL PROTECTED] wrote: zdraveite, imam linux box sas 3 GW-s (3 LAN-s): GW1 - default GW2 - locale net GW3 - BTK aDSL jelanieto mi e da napravia squida da minava vinagi prez GW3,t.e. prez aDSL-a tcp_outgoing_adress ne mi raboti , dori i ne prashta paketite kam GW3 (proverih s tcpdump-a) Á ÉÍÁÛ ÌÉ ÐÒÁ×ÉÌÏ, ËÏÅÔÏ ÄÁ ËÁÚ×Á: ÐÁËÅÔÁ Ó ÉÚÔÏÞÎÉË IP ÁÄÒÅÓÁ ÎÁ gw3 ÄÁ ÉÚÌÅÚÅ ÐÒÅÚ gw3, Á ÎÅ ÐÒÅÚ default. ÍÉÓÌÑ ÞÅ ÚÁ ÔÏ×Á ÎÅ ÔÉ ÒÁÂÏÔÉ ÔÏÚÉ ×ÁÒÉÁÎÔ. ÄÏÂÁ×É ÓÉ ÔÁËÏ×Á ÐÒÁ×ÉÌÏ. o4akvam ideite vi s netarpenie. georgi __ Discover Yahoo! Stay in touch with email, IM, photo sharing and more. Check it out! http://discover.yahoo.com/stayintouch.html __ Do you Yahoo!? Yahoo! Mail - Find what you need with new enhanced search. http://info.mail.yahoo.com/mail_250
Re: lug-bg: zor sas SQUID {to Evgeni Genchev}
idejata mi haresa,ja dai primer kak da hvana koi paketi sa na squida za da markiram i prenaso4a tiah kam GW3 .dai primer s iptables. g. --- Evgeni Gechev [EMAIL PROTECTED] wrote: ggg wrote: niamam kirilica na toja komp sorry. GW1 e real IP ot dostav4ika. GW2 - local mreja 192.168.250.0/24 GW3 - aDSL BTK 192.168.1.2 triabwa mi kogato iskam da polzvam DSL da sloja proxy (Squid) i to da me prekara prez GW3,a kogato ne iskam BTK da si mahna proxito i da varvia prez GW1,koito e default. da razbira se s policy routing moga da hvana port 80 na 192.168.250.1 ,kadeto e squida, i da go pratia na GW3 sled kato go premaskiram/nat-na, no kato mahna proxyto ot browsera - stava losho s tova policy r. nadiavam se sega da rabirash kakuv mi e problema. abe s dve dumi idejata e slednata : proxy - BTK (GW3) no-proxy - default GW1 georgi Ìàðêèðàø ïàêåòèòå íà squid-à ñ iptables -m owner ... Ïðàâèø rule çà òàêà ìàðêèðàíèòå èçõîäÿùè ïàêåòè, ñ êîéòî ãè ïðàùàø íà GW3, à âñè÷êî îñòàíàëî ñè ìèíàâà ïðåç GW1. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: lug-bg: zor sas SQUID {to Evgeni Genchev}
ggg wrote: idejata mi haresa,ja dai primer kak da hvana koi paketi sa na squida za da markiram i prenaso4a tiah kam GW3 .dai primer s iptables. g. --- Evgeni Gechev [EMAIL PROTECTED] wrote: ggg wrote: niamam kirilica na toja komp sorry. GW1 e real IP ot dostav4ika. GW2 - local mreja 192.168.250.0/24 GW3 - aDSL BTK 192.168.1.2 triabwa mi kogato iskam da polzvam DSL da sloja proxy (Squid) i to da me prekara prez GW3,a kogato ne iskam BTK da si mahna proxito i da varvia prez GW1,koito e default. da razbira se s policy routing moga da hvana port 80 na 192.168.250.1 ,kadeto e squida, i da go pratia na GW3 sled kato go premaskiram/nat-na, no kato mahna proxyto ot browsera - stava losho s tova policy r. nadiavam se sega da rabirash kakuv mi e problema. abe s dve dumi idejata e slednata : proxy - BTK (GW3) no-proxy - default GW1 georgi squid- iptables -m owner ... rule , GW3, GW1. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com squid- (user nobody): iptables -t mangle -A OUTPUT -m owner --uid-owner nobody -j MARK --set-mark 0x01 ip r a via GW3 t 253 ip ru a from tcp_outgoing_address_NA_SQUIDA fwmark 0x01 t 253
Re: lug-bg: zor sas SQUID {to Evgeni Genchev}
aa tui dobre ama az imam oshte procesi deto sa sobstvennost na nobody i imat trrafik (apacha naprimer - toi ima paketi ot vsi4ki GWs kum i ot nego) kakvo shte stane s tiah ? g. Ако squid-а е с натройките по подразбиране (user nobody): iptables -t mangle -A OUTPUT -m owner --uid-owner nobody -j MARK --set-mark 0x01 ip r a via GW3 t 253 ip ru a from tcp_outgoing_address_NA_SQUIDA fwmark 0x01 t 253 __ Yahoo! Mail Stay connected, organized, and protected. Take the tour: http://tour.mail.yahoo.com/mailtour.html
Re: lug-bg: zor sas SQUID {to Evgeni Genchev}
ggg wrote: aa tui dobre ama az imam oshte procesi deto sa sobstvennost na nobody i imat trrafik (apacha naprimer - toi ima paketi ot vsi4ki GWs kum i ot nego) kakvo shte stane s tiah ? g. squid- (user nobody): iptables -t mangle -A OUTPUT -m owner --uid-owner nobody -j MARK --set-mark 0x01 ip r a via GW3 t 253 ip ru a from tcp_outgoing_address_NA_SQUIDA fwmark 0x01 t 253 __ Yahoo! Mail Stay connected, organized, and protected. Take the tour: http://tour.mail.yahoo.com/mailtour.html user- squid- , ?:)
Re: lug-bg: zor sas SQUID
On 6/9/05, ggg [EMAIL PROTECTED] wrote: zdraveite, imam linux box sas 3 GW-s (3 LAN-s): GW1 - default GW2 - locale net GW3 - BTK aDSL jelanieto mi e da napravia squida da minava vinagi prez GW3,t.e. prez aDSL-a tcp_outgoing_adress ne mi raboti , dori i ne prashta paketite kam GW3 (proverih s tcpdump-a) , :IP gw3 gw3,default. .. o4akvam ideite vi s netarpenie. georgi __ Discover Yahoo! Stay in touch with email, IM, photo sharing and more. Check it out! http://discover.yahoo.com/stayintouch.html
Re: lug-bg: zor sas SQUID
adash :-) , tova dobre ,ama default GW triabwa da si ostane GW1 ina4e niamashe da pitam. g. --- Georgi Chorbadzhiyski [EMAIL PROTECTED] wrote: ggg wrote: zdraveite, imam linux box sas 3 GW-s (3 LAN-s): GW1 - default GW2 - locale net GW3 - BTK aDSL jelanieto mi e da napravia squida da minava vinagi prez GW3,t.e. prez aDSL-a tcp_outgoing_adress ne mi raboti , dori i ne prashta paketite kam GW3 (proverih s tcpdump-a) o4akvam ideite vi s netarpenie. route add default gw GW3 -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ __ Discover Yahoo! Use Yahoo! to plan a weekend, have fun online and more. Check it out! http://discover.yahoo.com/
Re: lug-bg: zor sas SQUID
ggg wrote: adash :-) , tova dobre ,ama default GW triabwa da si ostane GW1 ina4e niamashe da pitam. ho, humiproute2 policy routing. 1 . gateway , . .., . -- Georgi Chorbadzhiyski http://georgi.unixsol.org/
Re: lug-bg: zor sas SQUID
niamam kirilica na toja komp sorry. GW1 e real IP ot dostav4ika. GW2 - local mreja 192.168.250.0/24 GW3 - aDSL BTK 192.168.1.2 triabwa mi kogato iskam da polzvam DSL da sloja proxy (Squid) i to da me prekara prez GW3,a kogato ne iskam BTK da si mahna proxito i da varvia prez GW1,koito e default. da razbira se s policy routing moga da hvana port 80 na 192.168.250.1 ,kadeto e squida, i da go pratia na GW3 sled kato go premaskiram/nat-na, no kato mahna proxyto ot browsera - stava losho s tova policy r. nadiavam se sega da rabirash kakuv mi e problema. abe s dve dumi idejata e slednata : proxy - BTK (GW3) no-proxy - default GW1 georgi --- Georgi Chorbadzhiyski [EMAIL PROTECTED] wrote: ggg wrote: adash :-) , tova dobre ,ama default GW triabwa da si ostane GW1 ina4e niamashe da pitam. ho, hum òîãàâà ùå òðÿáâà äà ñè èãðàåø ñ iproute2 è policy routing. Íå ðàçáèðàì çàùî 1 òðÿáâà äà òè å ïî ïîäðàçáèðàíå. ß îïèøè êúì êîé gateway êîè ìðåæè îòèâàò, ÷å òàêà áåç ìðåæè å òðóäíî äà ñå ðàçáåðå êàêâî ñòàâà. ï.ï. ïèøè íà êèðèëèöà ìîëÿ, íåêà ñè ïåñòèì âðåìåòî åäèí íà äðóã. -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ __ Discover Yahoo! Use Yahoo! to plan a weekend, have fun online and more. Check it out! http://discover.yahoo.com/
Re: lug-bg: zor sas SQUID
ggg wrote: niamam kirilica na toja komp sorry. GW1 e real IP ot dostav4ika. GW2 - local mreja 192.168.250.0/24 GW3 - aDSL BTK 192.168.1.2 triabwa mi kogato iskam da polzvam DSL da sloja proxy (Squid) i to da me prekara prez GW3,a kogato ne iskam BTK da si mahna proxito i da varvia prez GW1,koito e default. da razbira se s policy routing moga da hvana port 80 na 192.168.250.1 ,kadeto e squida, i da go pratia na GW3 sled kato go premaskiram/nat-na, no kato mahna proxyto ot browsera - stava losho s tova policy r. nadiavam se sega da rabirash kakuv mi e problema. abe s dve dumi idejata e slednata : proxy - BTK (GW3) no-proxy - default GW1 georgi squid- iptables -m owner ... rule , GW3, GW1.
lug-bg: zor sas SQUID
zdraveite, imam linux box sas 3 GW-s (3 LAN-s): GW1 - default GW2 - locale net GW3 - BTK aDSL jelanieto mi e da napravia squida da minava vinagi prez GW3,t.e. prez aDSL-a tcp_outgoing_adress ne mi raboti , dori i ne prashta paketite kam GW3 (proverih s tcpdump-a) o4akvam ideite vi s netarpenie. georgi __ Discover Yahoo! Stay in touch with email, IM, photo sharing and more. Check it out! http://discover.yahoo.com/stayintouch.html
Re: lug-bg: zor sas SQUID
ggg wrote: zdraveite, imam linux box sas 3 GW-s (3 LAN-s): GW1 - default GW2 - locale net GW3 - BTK aDSL jelanieto mi e da napravia squida da minava vinagi prez GW3,t.e. prez aDSL-a tcp_outgoing_adress ne mi raboti , dori i ne prashta paketite kam GW3 (proverih s tcpdump-a) o4akvam ideite vi s netarpenie. route add default gw GW3 -- Georgi Chorbadzhiyski http://georgi.unixsol.org/
