Re: [squid-users] squid in a 2 nic configuration
> > > Essentially user1 connects to proxy on NIC1 port 3128, and squid > > > queries the internet on NIC2 to bring in the data the user has > > > requested from the internet. > > > > > > user 1 ---> Nic1(squid) > NIC2 > Internet > NIC2 -> > > > NIC1(squid) >user > > > > > > Can anyone point me in the right direction to enable this > > > functionality? > > Set NIC1 up such that it's on the same LAN as user 1. Set NIC2 up such > > that it's on the internet, with a default gateway that allows it to > > reach the internet. Optionally, restrict Squid so it only listens to > > the IP address assigned to NIC1. On 30.04.09 12:51, Adam Carter wrote: > Yep definitely setup squid to that it only listens on NIC1 using; > http_port :3128 It's the easiest way to be sure no-one > on the internet can browse your internal websites using the proxy. > > Also, if there are mutliple subnets on the inside of your network you'll > need to add static routes to the proxy to cover each of them. This is > really nothing to do with squid, just normal routing setup in the OS. You also may need to configure all outgoing_address directoves to IP address on outside nic... -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Boost your system's speed by 500% - DEL C:\WINDOWS\*.*
RE: [squid-users] squid in a 2 nic configuration
> > Essentially user1 connects to proxy on NIC1 port 3128, and squid > > queries the internet on NIC2 to bring in the data the user has > > requested from the internet. > > > > user 1 ---> Nic1(squid) > NIC2 > Internet > NIC2 -> > > NIC1(squid) >user > > > > Can anyone point me in the right direction to enable this > functionality? > > > > Set NIC1 up such that it's on the same LAN as user 1. Set > NIC2 up such > that it's on the internet, with a default gateway that allows it to > reach the internet. Optionally, restrict Squid so it only listens to > the IP address assigned to NIC1. Yep definitely setup squid to that it only listens on NIC1 using; http_port :3128 It's the easiest way to be sure no-one on the internet can browse your internal websites using the proxy. Also, if there are mutliple subnets on the inside of your network you'll need to add static routes to the proxy to cover each of them. This is really nothing to do with squid, just normal routing setup in the OS.
Re: [squid-users] squid in a 2 nic configuration
Mister Raven wrote: Ola, I want to set up my squid proxy so that proxy requests from users come in on one nic, and requests to the gateway/internet go out on the other nic. Essentially user1 connects to proxy on NIC1 port 3128, and squid queries the internet on NIC2 to bring in the data the user has requested from the internet. user 1 ---> Nic1(squid) > NIC2 > Internet > NIC2 -> NIC1(squid) >user Can anyone point me in the right direction to enable this functionality? Set NIC1 up such that it's on the same LAN as user 1. Set NIC2 up such that it's on the internet, with a default gateway that allows it to reach the internet. Optionally, restrict Squid so it only listens to the IP address assigned to NIC1. Thanks, Darren Chris
