No, i have no access to the content switch. And if a user does not use the common address, but the own ip address of the server, than it is useless. Gellert ---------- Forwarded message ---------- From: FredB <fredbmail@xxxxxxx> Date: 2012/4/24 Subject: Re: allow one connection for one authenticated user on multiple squid servers To: Másolatot kap: squid-users@xxxxxxxxxxxxxxx > Hi, > > i have a very exciting question. (Well, actually it is exciting for > me > only). I have 3 identical squid servers with squid-2.7.STABLE5. > There is a Cisco content switch witch a common ip address for the 3 > servers for load balancing and failover purposes. > There is a common dns name for the proxy called proxy.mycompany.com, > and 3 dns names for the 3 servers, proxy[4,5,6].mycompany.com. > The users need to authenticate themselves with email address and > password (on ldap) to use the proxy and they are not allowed to > authenticate from 2 or more comuters at the same time. (ttl is 10 > minutes) > My problem is (actually it is not my problem, but i have to solve it) > that if a user sets the proxy in the browser for proxy4 on > workstation1 and on workstation2 he/she sets it to proxy5, he/she can > use it on 2 different workstations, which is not allowed. > How can i achieve that the restrictions are enforced for the 3 squid > servers together at the same time? > > Any idea is welcomed! > > (My first idea is to use some sort of external_acl_type, and write a > helper and maintain a session database, but this sound to complicated > for me ) > > Thanks, > Gellert > Hi, Can you use Hash algo on Cisco ? Each user always on the same proxy Fred
