Hello. Philipp Rusch pisze: > Sorry to bother you, but I don't get it. > > We have two DSL Lines with fixed IPs and our firewall has three physical > interfaces. > Quite straightforward setup like it seems, an interface for each > provider and the > remaining interface for local LAN. There is only one thing we want to > regulate by > using packet marking and tcrules: one of the lines shall be used for > www-traffic only. > We use Squid as proxy-service on that machine and since upgrade from > 3.4.6 (shell) > to 4.0.3 (perl) we notice that Squid is behaving strange. After a while > Squid seems > to go "DIRECT" only and the browsers on the clients seem to hang and or > surfing is > ultra slow. > If we take down the second external interface and use a "single-ISP" > setup we don't > see this kind of behaviour and surfing speeds up enormously. > Any hints appreciated. >
There were some multiISP problems with shorewall-perl in 4.0.3, check last threads in list archive (at http://sourceforge.net/mailarchive/forum.php?forum_name=shorewall-users): "MultiISP: perl compiler bug (shorewall 4.0.3)" and "MultiISP: minor(?) problem with route_rules processing". Maybe patches from there will help You. Or wait for shorewall 4.0.4. Regards. -- Artur ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
