https://serverfault.com/questions/487891/cant-ping-multihomed-linux-machine-on-non-default-interface
-----Original Message-----
From: Alex Rousskov <rousskov@xxxxxxxxxxxxxxxxxxxxxxx>
To: davidjesse091 <davidjesse091@xxxxxxx>; squid-users <squid-users@xxxxxxxxxxxxxxxxxxxxx>
Sent: Fri, Jun 15, 2018 11:43 pm
Subject: Re: iptables setup for tcp_outgoing_address
On 06/15/2018 05:12 PM, davidjesse091@xxxxxxx wrote:
> if I use another interface's IP address
> for tcp_outgoing_address on my Linux machine then web pages don't load.
Does using "another interface" IP address work with curl or wget
executed on the Squid Linux box?
curl --interface 172.16.11.107 http://www.example.com
wget --bind-address=172.16.11.107 http://www.example.com
Alex.
> -----Original Message-----
> From: Alex Rousskov <rousskov@xxxxxxxxxxxxxxxxxxxxxxx>
> To: davidjesse091 <davidjesse091@xxxxxxx>; squid-users
> <squid-users@lists.squid-cache.org>
> Sent: Fri, Jun 15, 2018 7:01 pm
> Subject: Re: iptables setup for tcp_outgoing_address
>
> On 06/15/2018 04:42 PM, davidjesse091@xxxxxxx
> <mailto:davidjesse091@xxxxxxx> wrote:
>
>> I want to connect to Squid proxy using 192.168.1.212 and if I am
>> connecting using port 11000,
>
> I assume you meant "connecting to port 11000" (there is also the client
> source port, but it should not matter here).
>
>
>> I want squid to have the traffic go out of the 172.16.11.107 IP
>
>
>> http_port 11000 name=port_11000
>> acl port_11000_acl myportname port_11000
>> tcp_outgoing_address 172.16.11.107 port_11000_acl
>
> Looks good to me, provided all your outgoing traffic goes to IPv4
> addresses (no IPv6).
>
>
>> What would I need to do with iptables to make this work?
>
> Why do you think you need iptables? What does not work if you do not use
> IP tables?
>
>
> Alex.
From: Alex Rousskov <rousskov@xxxxxxxxxxxxxxxxxxxxxxx>
To: davidjesse091 <davidjesse091@xxxxxxx>; squid-users <squid-users@xxxxxxxxxxxxxxxxxxxxx>
Sent: Fri, Jun 15, 2018 11:43 pm
Subject: Re: iptables setup for tcp_outgoing_address
On 06/15/2018 05:12 PM, davidjesse091@xxxxxxx wrote:
> if I use another interface's IP address
> for tcp_outgoing_address on my Linux machine then web pages don't load.
Does using "another interface" IP address work with curl or wget
executed on the Squid Linux box?
curl --interface 172.16.11.107 http://www.example.com
wget --bind-address=172.16.11.107 http://www.example.com
Alex.
> -----Original Message-----
> From: Alex Rousskov <rousskov@xxxxxxxxxxxxxxxxxxxxxxx>
> To: davidjesse091 <davidjesse091@xxxxxxx>; squid-users
> <squid-users@lists.squid-cache.org>
> Sent: Fri, Jun 15, 2018 7:01 pm
> Subject: Re: iptables setup for tcp_outgoing_address
>
> On 06/15/2018 04:42 PM, davidjesse091@xxxxxxx
> <mailto:davidjesse091@xxxxxxx> wrote:
>
>> I want to connect to Squid proxy using 192.168.1.212 and if I am
>> connecting using port 11000,
>
> I assume you meant "connecting to port 11000" (there is also the client
> source port, but it should not matter here).
>
>
>> I want squid to have the traffic go out of the 172.16.11.107 IP
>
>
>> http_port 11000 name=port_11000
>> acl port_11000_acl myportname port_11000
>> tcp_outgoing_address 172.16.11.107 port_11000_acl
>
> Looks good to me, provided all your outgoing traffic goes to IPv4
> addresses (no IPv6).
>
>
>> What would I need to do with iptables to make this work?
>
> Why do you think you need iptables? What does not work if you do not use
> IP tables?
>
>
> Alex.
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
