Hi, i have a very exciting question. (Well, actually it is exciting for me only). I have 3 identical squid servers with squid-2.7.STABLE5. There is a Cisco content switch witch a common ip address for the 3 servers for load balancing and failover purposes. There is a common dns name for the proxy called proxy.mycompany.com, and 3 dns names for the 3 servers, proxy[4,5,6].mycompany.com. The users need to authenticate themselves with email address and password (on ldap) to use the proxy and they are not allowed to authenticate from 2 or more comuters at the same time. (ttl is 10 minutes) My problem is (actually it is not my problem, but i have to solve it) that if a user sets the proxy in the browser for proxy4 on workstation1 and on workstation2 he/she sets it to proxy5, he/she can use it on 2 different workstations, which is not allowed. How can i achieve that the restrictions are enforced for the 3 squid servers together at the same time? Any idea is welcomed! (My first idea is to use some sort of external_acl_type, and write a helper and maintain a session database, but this sound to complicated for me ) Thanks, Gellert
