On 2010/01/16 03:37, mashenko shenua wrote:
> I'm trying to setup a Multiwan OpenBSD firewall. I need to use Squid
> but I cannot setup with rdr and round-robin..
> pass in on $int_if route-to \
> { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin \
> proto tcp from $lan_net to any port http
Does squid run on the firewall itself? If so, this "pass in" rule
will not apply; squid makes its own connection from the firewall,
so the packet will be outbound (i.e. you would need a "pass out
... route-to {($ext_if1 $ext_gw1) ($ext_if2 $ext_gw2)}" rule).
