I just use freebsd on the squid VM since squid performs better/faster on freebsd.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
k a h l i l e r w i n t a l l e d o
tp: +1.284.440.0102
im: talledo...@yahoo.com
fb: www.facebook.com/kstalledo
"little knowledge that acts is worth infinitely more than
much knowledge that is idle." - k. gibran
On Jan 16, 2010, at 3:12 PM, mashenko shenua wrote:
> I think this can be work.. I don't understand why two OS.
>
> 2010/1/16 Kahlil Erwin S. Talledo <kstall...@binarysalad.com>:
>> Hello,
>>
>> I have tried doing this several time before and have spent quite a
>> significant time trying to accomplish what you are doing but in the long
>> run, running squid and have it loadbalanced through two wan connections in a
>> single machine is just too complicated or not possible as of the moment.
>> What I ended up doing is virtualize two machines in one box. Installing
>> openbsd on one VM to do the wan loadbalancing and another VM for squid (i
>> used freebsd on the squid VM) and just did internal networking to connect
>> both. this would introduce more latency though and i/o speed may be
>> hampered. you can also separate both services (squid, loadbalancing) on
>> different physical machines.
>>
>> Cheers,
>>
>> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
>> k a h l i l e r w i n t a l l e d o
>>
>> tp: +1.284.440.0102
>> im: talledo...@yahoo.com
>> fb: www.facebook.com/kstalledo
>>
>> "little knowledge that acts is worth infinitely more than
>> much knowledge that is idle." - k. gibran
>>
>>
>>
>>
>>
>>
>>
>>
>> On Jan 16, 2010, at 9:36 AM, mashenko shenua wrote:
>>
>>> Hi,
>>>
>>> Yes Squid it's running on same machine.. ¿Can you rewrite it?
>>>
>>> 2010/1/16 Stuart Henderson <s...@spacehopper.org>:
>>>> On 2010/01/16 03:37, mashenko shenua wrote:
>>>>> I'm trying to setup a Multiwan OpenBSD firewall. I need to use Squid
>>>>> but I cannot setup with rdr and round-robin..
>>>>
>>>>> pass in on $int_if route-to \
>>>>> { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin \
>>>>> proto tcp from $lan_net to any port http
>>>>
>>>> Does squid run on the firewall itself? If so, this "pass in" rule
>>>> will not apply; squid makes its own connection from the firewall,
>>>> so the packet will be outbound (i.e. you would need a "pass out
>>>> ... route-to {($ext_if1 $ext_gw1) ($ext_if2 $ext_gw2)}" rule).
>>>>
>>>>
>>
>>
smime.p7s
Description: S/MIME cryptographic signature
