Sorry to bother you, but I don't get it.
We have two DSL Lines with fixed IPs and our firewall has three physical
interfaces.
Quite straightforward setup like it seems, an interface for each
provider and the
remaining interface for local LAN. There is only one thing we want to
regulate by
using packet marking and tcrules: one of the lines shall be used for
www-traffic only.
We use Squid as proxy-service on that machine and since upgrade from
3.4.6 (shell)
to 4.0.3 (perl) we notice that Squid is behaving strange. After a while
Squid seems
to go "DIRECT" only and the browsers on the clients seem to hang and or
surfing is
ultra slow.
If we take down the second external interface and use a "single-ISP"
setup we don't
see this kind of behaviour and surfing speeds up enormously.
Any hints appreciated.
Regards from Germany,
Mit freundlichen Grüßen,
Philipp Rusch
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
