Re: [squid-users] how to Configure squid cache with 1 NIC, 1 public IP ?

From: Tek Bahadur Limbu <[email protected]>
Date: Mon, 22 Oct 2007 14:42:26 +0545

Hi Yogesh,

Yogesh Patil wrote:
> Hello,
> Thanks for the help, i am using Dell PowerEdge 840 Server with
> Fedora Core 7, and Squid 2.6, my sceanario is as follows.
>
> 1) Router connected to the fiber leased line (it is the gateway for
> all system now)
> 2) Squid Cache Server (1 NIC, Public IP)
> 3) DNS Server (1 NIC Public IP)
> 4) Bandwidth Management Server with 2 NIC (1 Goes to Public IP /
> Another Goes to Customer with Private IP)
>
> Now i want to use Squid for Cache and natting will be done at
> my bandwidth management server, currently there is not natting enabled
> on my router, so if you can help me in configuring the router for
> forwarding the web requests to the Squid, i will be very thankful to
> you
> also one on which port i have to implement port forwarding for
> forwarding web requests to the Squid, and as i will be configuring
> squid with transparency.

I think you can put your Bandwidth management shaper in front of your
router and add a static route in it to forward all packets to the
router. This way, the shaper becomes the router and you will have total
control of your traffic management rules.

(1.) Shaper (Gw) --> Router (wccp) --> Squid

Then, you can use WCCP on your router for forwarding web requests to
Squid's port transparently.

Or you can forward your all NAT web traffic from your bandwidth shaper
to your Squid box. You need a static route-map in your router to run
Squid transparently.

(2.) Router(Gw/route-map) --> Shaper ---> Squid

However, these are just my thoughts. I maybe be wrong and somebody else
should have a better idea and way to deal with your case.

One thing I want to advise is: Why run NAT on an ISP level? You are
bound to face problems sooner or later!

Or simply, it's not worth it! If possible, get a minimum /22 network.

>
>
> Thanks & Regards,
> Yogesh Patil

Thanking you...

>
>
>
>
> On 10/22/07, Tek Bahadur Limbu <teklimbu@wlink.com.np> wrote:
>> Hi Yogesh,
>>
>>
>> Yogesh Patil wrote:
>>> Hi, there
>>> I would like to configure squid cache for ISP setup only with 1
>>> NIC and 1 Public IP (live IP), so now the question is, how should i
>>> configure the squid cache server, with this, as i am having no
>>> previous experience with the squid, anybody please tell me procedure,
>>> else let me know the website where i can get tutorial for the same.
>> Of course you can configure Squid with just 1 NIC card and I public IP.
>> You need either a load balancer sitting in front of Squid or you need
>> your router to forward web request to your Squid box. I am guessing that
>> you want your Squid to run transparently too.
>>
>>
>>> If configuring squid with 1 NIC & 1 public ip is not possible,
>>> please tell me the procedure for configuring squid cache with 2
>>> NIC & 2 PUBLIC IP (not a single private IP),
>>>
>>> * I am connecting to the internet through dedicated leased line.
>> Do you have a router connected to your leased line? If so, then setup
>> your router to forward web requests to your single NIC Squid box.
>>
>> Since you mentioned using this Squid box for an ISP, will your customers
>> also be having Public IP addresses or will they be having private
>> address running under NAT?
>>
>> Which OS will you be using on what hardware?
>>
>>>
>>>
>>> Thanks in advance
>> Thanking you...
>>
>>>
>>>
>>>
>>
>> --
>>
>> With best regards and good wishes,
>>
>> Yours sincerely,
>>
>> Tek Bahadur Limbu
>>
>> System Administrator
>>
>> (TAG/TDG Group)
>> Jwl Systems Department
>>
>> Worldlink Communications Pvt. Ltd.
>>
>> Jawalakhel, Nepal
>>
>> http://www.wlink.com.np
>>
>> http://teklimbu.wordpress.com
>>
>
>

-- 
With best regards and good wishes,
Yours sincerely,
Tek Bahadur Limbu
System Administrator
(TAG/TDG Group)
Jwl Systems Department
Worldlink Communications Pvt. Ltd.
Jawalakhel, Nepal
http://www.wlink.com.np
http://teklimbu.wordpress.com
Received on Mon Oct 22 2007 - 02:58:21 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Nov 01 2007 - 13:00:01 MDT