> On Wed, 21 Jan 2004, PINEAU Olivier wrote:
>
> > By despair, I change my network conf to use a different networdk card
for
> > each VLAN and it's finally works.
> > So, don't use 8021Q module with SQUID !
>
> Are you sure your network card supports 802.1Q? Not all Ethernet cards
> support the larger frame sizes required for 802.1Q operation. 802.1Q adds
> an additional VLAN header to the frames making them bigger than the
> maximum Ethernet frame size.
>
> Regards
> Henrik
>
I'm sure : I use 3COM 905 CX-TX-M.
Module 8021Q.o was load.
Here was my configuration for which Squid works fine except logging in some
websites :
insmod /lib/modules/2.4.21-0.26mdk/kernel/net/8021q/8021q.o
vconfig add eth0 1
vconfig add eth0 2
ifconfig eth0.1 10.10.10.1 netmask 255.255.0.0 up
ifconfig eth0.2 10.20.10.1 netmask 255.255.0.0 up
ifconfig eth0 10.0.0.30 netmask 255.254.0 up
route add default gw 10.0.0.1
iptables -t nat -F
iptables -t filter -F
iptables -t nat -P PREROUTING DROP
iptables -t nat -A PREROUTING -p tcp --dport 110 -j ACCEPT
iptables -t nat -A PREROUTING -p tcp --dport 3128 -j ACCEPT
iptables -t nat -A PREROUTING -d 194.2.0.20 -j ACCEPT
iptables -t nat -A PREROUTING -d 194.2.0.50 -j ACCEPT
iptables -t nat -A POSTROUTING -j MASQUERADE
squid start
This line could see strange :
ifconfig eth0 10.0.0.30 netmask 255.2540.0 up
But, if I use this configuration :
ifconfig eth0 0.0.0.0 up
vconfig add eth0 3
ifconfig ifconfig eth0.3 10.0.0.30 netmask 255.252.0.0 up
Squid doesn't deserve request in acceptable time (maybe 10 minutes) and no
idea the reason...
Olivier
Received on Thu Jan 22 2004 - 02:57:56 MST
This archive was generated by hypermail pre-2.1.9 : Sun Feb 01 2004 - 12:00:08 MST