[squid-users] tcp_outgoing_addres based on dst address

From: Denis Tatarskikh <dendy@dont-contact.us>
Date: Thu, 5 Jun 2003 11:32:54 +0500

There are squid v2.5STABLE2 and a number of other services (mail, for example)
at machine with 2 connections (1.1.1.11 & 2.2.2.22) to different providers.
I wish traffic from mail
and other services, and squid traffic to some networks (3.3.3.0/24)
to be directed to Provider 1, but all other squid traffic to Provider 2.
So machine has default to provider 1 (to 1.1.1.1)
I believe config should be similar to this:

acl NET3 dst 3.3.3.0/24

tcp_outgoing_address 2.2.2.22 !NET3 # to prov 2
tcp_outgoing_address 1.1.1.11 # to prov 1

However, sometimes connections to host www.333.com having address 3.3.3.3 are
made from 2.2.2.22, sometimes from 1.1.1.11

I found that matching acl !NET3 are performed before resolving domain name
(www.333.com) and match succeed only if Dn is in IP cache.

Please, hint, how should I address the problem and get dst based
tcp_outgoing_address determination work properly, as I expect it?

-- 
Denis Tatarskikh [UdSU/MF] [UdSU/IC]        mailto:dendy@udsu.ru
Received on Thu Jun 05 2003 - 00:33:03 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:16 MST