Chiming in here about the kemps I used the kemps because they were available for this project. They have worked quite well and as very easy to manage. HA works fine. Troubleshooting is OK too (its looks like a BSD box under the hood). L7 so that (as noted by Brett), I see to see the client IPs. Squid does some routing, and logging that require that. I've not tried HA proxy, or tproxy yet. Sean On 23 May 2013 08:11, Eliezer Croitoru <eliezer@xxxxxxxxxxxx> wrote: > > On 5/23/2013 8:42 AM, Brett Lymn wrote: >> >> One problem with using L2 is that you then lose the ability to log the >> client IP address, everything appears to come from the load balancer. >> Using L7 you can, at least on some load balancers, insert a >> X-FORWARDED-FOR header with the client IP in it so you can log this in >> squid using a custom log line. > > Unless you use TPROXY which is very simple to use if you understand the > concepts and ideas. > Also there is an option to use LVS or PROXY protocol in many cases. > I dont remeber if squid support proxy protocol stickily but L2 LB is far > more easy to debug and use rather then a L7 one which requires a much more > advanced CPU ram and other stuff. > > Eliezer
