How to get IPCop to proxy more than one subnet on green
Submitted by mark on Sat, 04/12/2008 - 19:32.
Slashdot It! 
Recently we had to trouble shoot an existing IPCop installation at one of our customers which had started to misbehave following the numerous hard shutdowns caused by Eskom's load shedding.
Once we sorted out the trouble with squid and dansguardian we had to find a way to allow multiple subnets on the green network to access the proxy server. In most installations the green network has only one subnet but in this particular case the customer had 5 branches that used VPN's to connect to head office and breaking out to the internet from there.
IPCop is built on the assumption that there is only one subnet on green. After trying iptables and editing squid.conf file I came across a simple solution on the IPCop forums. The answer was to create aliases for each network on eth0 (green) on the IPCop machine.
IP Aliases to the rescue
Adding "ifconfig add eth0:1 192.168.12.2 netmask 255.255.255.0 broadcast 255.255.255.0" for each subnet to rc.local solved the problem.
Share this page!
muti
digg
del.icio.us
google
reddit
facebook
furl Slashdot It!
