> > We're having a problem with an external webmail site that uses round robin > dns: > >> webmail.domain.com > Server: 10.51.#.# > Address: 10.51.#.##53 > > Non-authoritative answer: > Name: webmail.domain.com > Address: 12.145.#.5 > Name: webmail.domain.com > Address: 166.73.#.139 > Name: webmail.domain.com > Address: 12.145.#.56 > > Bringing up the original webmail site works fine, but a user's session > gets > bounced between > The different webmail servers during authentication. > > Thu Sep 4 13:50:53 2008 280 10.52.15.128 TCP_MISS/302 228 GET > http://webmail.domain.com/ username DIRECT/12.145.#.56- > Thu Sep 4 13:51:39 2008 45424 10.52.15.128 TCP_MISS/200 281989 CONNECT > webmail.domain.com:443 username DIRECT/12.145.#.56 - > Thu Sep 4 13:51:39 2008 44735 10.52.15.128 TCP_MISS/200 302531 CONNECT > webmail.domain.com:443 username DIRECT/12.145.#.56 - > Thu Sep 4 13:51:39 2008 44739 10.52.15.128 TCP_MISS/200 180145 CONNECT > webmail.domain.com:443 username DIRECT/166.73.#.139 - > Thu Sep 4 13:51:39 2008 44739 10.52.15.128 TCP_MISS/200 175494 CONNECT > webmail.domain.com:443 username DIRECT/12.145.#.5 - > > Is this a Squid DNS caching problem? Is it a problem with the webmail > site > not maintaining a session between the proxy server and the mail server? > Is > there a way to have the Squid proxy use a consistent IP address for a URL > instad of a new DNS lookup? We're running squid-3.0.STABLE6. balance_on_multiple_ip off This is a known problem, and will be off by default in 3.1 and later. Amos
