Hi
I have a FW dual homed to the Internet via a leased line and most
recently by a ADSL line.
I have SQUID running on the FW which I want to direct to the ADSL line
as well as other traffic from my LAN.
After reading the LARTC Howto and the on-line book by Matthew ?? I have
my LAN-Internet traffic sorted but the SQUID traffic is a problem.
This is my config on a test machine:
Chain OUTPUT (policy ACCEPT 47542 packets, 4771K bytes)
pkts bytes target prot opt in out source
destination
458 44858 MARK tcp -- * * 0.0.0.0/0
0.0.0.0/0 tcp dpts:80:443 MARK set 0x1d
# ip rule ls
0: from all lookup local
2000: from all fwmark 0x1d iif lo lookup table2
32766: from all lookup main
32767: from all lookup default
#
]# ip route ls table 2
192.168.10.16/28 dev eth1 proto kernel scope link src 192.168.10.30
10.1.1.0/24 dev eth2 proto kernel scope link src 10.1.1.254
10.3.0.0/23 dev eth0 proto kernel scope link src 10.3.1.224
default via 10.1.1.59 dev eth2 src 10.1.1.254
Eth0 is the leased line, eth2 is the ADSL line and eth1 my internal LAN.
My default route in the "main" table points to the leased line.
With the above config I find that the output of squid is routed to the
ADSL line as desired, however, the problem is that the source address in
the packets is that of my LL interface. Is there a way to fix this?
I've read a lot on the web but I find that I'm now going in circles so
any help would be appreciated.
Regards Mike.D.
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
