[*] Re: [LARTC] Squid - Load Balancing Multihomed Linux Router
Eduardo Ferreira
duda@icatu.com.br
Tue, 6 Jul 2004 15:19:15 -0300
This is a multipart message in MIME format.
--=_alternative 0064AC1383256EC9_=
Content-Type: text/plain; charset="US-ASCII"
Manish wrote on 06/07/2004 15:01:58:
> [...]. But how would the proxy server
> behave in case of 2 or more outgoing internet links ? Has someone tried
> out something similar ?
you will have problems with sites that keep track of IP addressess for
session validation. Some sites will end the session if they receive a
request from a different IP than the one that initiated the browsing. This
occurs mainly in banks and other ssl connections. Here, I use a iptables
mangle rule to mark tcp/443 packets and a ip rule to direct marked packets
to one fixed link.
> Thank you in advance for your comments.
>
> - Manish
>
________________________
Eduardo Ferreira
Icatu Holding S.A.
Supervisor de TI
(5521) 3804-8606
--=_alternative 0064AC1383256EC9_=
Content-Type: text/html; charset="US-ASCII"
<br><font size=2><tt>Manish wrote on 06/07/2004 15:01:58:<br>
<br>
> [...]. But how would the proxy server <br>
> behave in case of 2 or more outgoing internet links ? Has someone
tried <br>
> out something similar ? </tt></font>
<br><font size=2><tt>you will have problems with sites that keep track
of IP addressess for session validation. Some sites will end the
session if they receive a request from a different IP than the one that
initiated the browsing. This occurs mainly in banks and other ssl
connections. Here, I use a iptables mangle rule to mark tcp/443 packets
and a ip rule to direct marked packets to one fixed link.</tt></font>
<br><font size=2><tt><br>
> Thank you in advance for your comments.<br>
> <br>
> - Manish<br>
> <br>
</tt></font>
<br><font size=2 face="sans-serif">________________________<br>
Eduardo Ferreira<br>
Icatu Holding S.A.<br>
Supervisor de TI<br>
(5521) 3804-8606 <br>
</font>
--=_alternative 0064AC1383256EC9_=--