----- Original Message ----- From: "Edward D. Millington" <[EMAIL PROTECTED]> To: "Hamid Hashemi Golpayegani" <[EMAIL PROTECTED]> Sent: Wednesday, February 26, 2003 8:35 PM Subject: Re: [squid-users] tcp_outgoing_address problem !
> Are you doing policy routing? > > You need to allow both squid ips in the policy. > > Eg. > > access-list 110 deny tcp host 81.12.18.2 any > access-list 110 deny tcp host 62.112.164.193 any > access-list 110 permit tcp any any > route-map squidcaching permit 110 > match ip address 110 > set ip next-hop 81.12.18.2 > > > Thank you very much. > > Best regards > > Edward Millington > BSc, Network+, I-Net+, CIW Professional > Systems Administrator, Sr > Cariaccess Communications Ltd. > Palm Plaza > Wildey > St. Michael > Barbados > > Phone: 1 246 430 7435 > Mobile: 1 246 234 6278 > Fax: 1 246 431 0170 > > [EMAIL PROTECTED] > www.cariaccess.com > > > -----Original Message----- > From: "Hamid Hashemi Golpayegani" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Date: Thu, 27 Feb 2003 01:38:37 +0330 > Subject: [squid-users] tcp_outgoing_address problem ! > > > Hi , > > > > I have a working squid 2.5 Stable 1 that using an internet connection > > through eth0 card with a default route added to routing table . For > > some reason I have setup a one way receive only sattelite DVB > > receiver and I want to use this link for some IP classes . Then I > > used tcp_outgoing_address . My network plan is like this : > > > > eth0 -> 81.12.18.2 81.12.18.10 > > |-----------| |----------------------| > > |-------------------------| > > | squid box |-------| Catalyst 2950 switch |------| Broadlogic DVB > > Receiver |----( Sattelite Dish and LNB Receiver ) <------- > > 62.112.164.192/255.255.255.192 > > |-----------| |----------------------| > > |-------------------------| > > eth0:0 -> 62.112.164.193 | > > | > > |----------------------| > > | Cisco 2650 Router | 81.12.18.1 > > |----------------------| > > | > > | > > DSL Connection > > > > As you can see there two different classes the 81.12.18.0/24 is > > routed through DSL connection from send and receive internet and > > 62.112.164.192/255.255.255.192 is routed through DSL for sending > > packets and receiving through DVB Receiver . > > So the Squid box have two different IP address that each one from one > > of these classes . There is a network card the I stored Secondary IP > > address on the interface . The squid ip address is 81.12.18.2 is DSL > > class IP address and 62.112.164.193 is DVB class IP address . > > I have tried pinging yahoo.com on squid box with this command : ping > > yahoo.com , and all things well cause sending and receiving is throgh > > DSL link . > > The I tried ping yahoo.com with this command : ping -I 62.112.164.193 > > yahoo.com , and also all things well cause sending is through DSL > > link and receiving is through sattelite DVB receiver . > > As you can see there is no problem is our DVB connection and network > > plan . After this I tried to configure squid to use the sattelite > > connection for some specific address with this configuration : > > > > acl specific_ips src 81.12.18.192/255.255.255.192 > > tcp_outgoing_address 62.112.164.193 specific_ips > > tcp_outgoing_address 81.12.18.2 > > > > Also the default route of the squid box is 81.12.18.1 and all > > sattelite Ips are routed to squid box on Broadlogic . > > The problem is that the normal IP addresses ( instead of specific_ips > > ) is working well through normal DSL connection and IP address and > > nothing happened to them . But the specific_ips that should use > > sattelite link is not working and no webpage could browsed . > > I tried netstat and it shows that the connection from source > > 62.112.164.193 to target host is tried to established and added to > > netstat list . But there is no web browsing ! Any idea ? > > > > -- > > Regards > > > > ================================================================= > > / Seyyed Hamid Reza / WINDOWS FOR NOW !! / > > / Hashemi Golpayegani / Linux for future , FreeBSD for ever / > > / Morva System Co. / ------------------------------------- / > > / Network Administrator/ [EMAIL PROTECTED] , ICQ# : 42209876 / > > ================================================================ >
