Re: [squid-users] Finding real remote address

From: Henrik Nordstrom <[email protected]>
Date: Mon, 17 Oct 2005 00:23:58 +0200 (CEST)

On Sat, 15 Oct 2005, Tony Spencer wrote:

> I users coming into our network over an L2TP tunnel who are assigned an IP
> address and then are directed through our squid servers via an LVS.
> My problem is that the squid access log shows the requests coming from the
> IP address of the L2TP tunnel but I want it to tell me what the remote users
> IP address is.

Then you are most likely running masqeuerading on your L2TP server, making
it masquerade the IP addresses of the users with it's own IP.

Or perhaps you are confusing what the client IP is in such configuration.
The client IP in an L2TP setup is the IP address assigned to the client
over the L2TP tunnel, not the clients actual local network IP (the local
network IP is irrelevant when using L2TP). Each client of an L2TP server
is given an unique IP for that client (or session), what is determined by
the L2TP server.

Regards
Henrik
Received on Sun Oct 16 2005 - 16:23:59 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Nov 01 2005 - 12:00:04 MST