Tugger the SLUGger!SLUG Mailing List Archives

Re: [SLUG] squid and/or routing problem

On Wed, Sep 20, 2000 at 10:01:02AM +1000, David Kempe wrote:

> How do i set up squid ACLS so a limited amount of source IPs only goes out
> the modem and the others go out the router at 0.1 ? Or is an ipchains
> question? Can you even do this?

I've not actually done this, but it does seem possible.  However, you will need
to use two parent caches, one accessible via the router and the other via the
modem, and have your routing table setup such that connections to each cache go
over the appropriate link.

Define an acl for each of the two ip address ranges, setup two different
`cache_peer' directives and define a cache_peer_access for each one, using the
two acls you defined earlier.  Then setup a couple of `never_direct' directives
for the two acls to force all queries via the appropriate parent cache, and
hence the appropriate link.

Read the squid FAQ at http://www.squid-cache.org/Doc/FAQ/, especially question
4.9 (never_direct) and section 10 (access control).


whois !JC774-AU@xxxxxxxxxxxxxxx