On 8/19/2013 12:52 PM, Fábio Rabelo wrote: > For is just az concept question : > > There are a need to change something in Squid3 config when it are > running in the same box as shorewall with 2 ISP ? > > I've been thinking in do this at home, as a proof of concept for future > implememtations ... > > I allways use Roberto's Debian package to implement Shorewall .
Fábio, I use Squid3 on my 2-ISP gateway. I have added the following to squid.conf to be able to control which ISP is used by one of the clients: acl mac src 172.20.1.145/32 172.20.1.146/32 tcp_outgoing_address 67.170.121.6 mac acl rest src 172.20.0.0/22 tcp_outgoing_address 70.90.191.121 So the mac (172.20.1.145 and .146) use the ISP interface with address 67.170.121.6 and my other clients use the other interface. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Introducing Performance Central, a new site from SourceForge and AppDynamics. Performance Central is your source for news, insights, analysis and resources for efficient Application Performance Management. Visit us today! http://pubads.g.doubleclick.net/gampad/clk?id=48897511&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
