On Mon, 3 Dec 2007 02:31:28 pm James Gray wrote: ** SNIPPED **
> So my question to the list is whether or not there is a better way to do
> this (WCCP with Shorewall and Squid maybe)? Using ICMP-redirect with OSX
> clients breaks routing to our DMZ's (we have two).
Having spare NIC's floating around, we simply created a new DMZ (which was a
planned modification anyway) and moved the proxy to the DMZ. Again,
following the steps on the Shorewall website it was trivial to set up and get
functioning. The only minor headache was the re-work for the traffic shaping
and ISP selection (we have 2 ISP's).
Thanks to Tom and Andrew for their suggestions. In the end, we opted for
simply bringing forward a (minor) planned network restructure and move the
proxy which has solved all the problems we were having.
Cheers,
James
--
* Phaedrus wishes he could get a machine that consists of Sparc IO,
Alpha Processors and sleek design of an SGI
<pp> And intel prices
-- Seen on #Linux
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------- SF.Net email is sponsored by: The Future of Linux Business White Paper from Novell. From the desktop to the data center, Linux is going mainstream. Let it simplify your IT future. http://altfarm.mediaplex.com/ad/ck/8857-50307-18918-4
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
