EFW Support

Hi All,

New to this, have a quick Q?

i have two gateways set up on Router - 192.168.88.1/24 & 192.168.77.1/24
Endian has two uplinks setup - Main Uplink = 192.168.88.1 , Secondary Uplink = 192.168.77.1

(Endian is set up in Transparrent proxy mode)

Network layout is - ISP->Router->Endian-> LAN

Now when i set myself up static on 192.168.88.0/24 range or 192.168.77.0/24 range on lan side, every thing works like it should right, caching working aswell.
this all is coming out Main Uplink.

what i would like to do now is route all HTTP traffic though Secondary Uplink, which is done though routing policy or routing table.
this works.... But,

Problem...

Proxy is still caching though Main uplink and not caching the HTTP traffic from Secondary uplink

How do i get the Proxy to cache off of that specific uplink(gateway) for that specific subnet???

any ideas would be greatfull.

any one out there?

maybe this explains it better...

What we are trying to do is transparently cache traffic for two separate IP subnets with different gateways. Is this possible?
Our problem is that the proxy always pulls from the first (default) uplink's gateway. We want traffic from the 77 ip range to go out on its own gateway from the cache.

This is our network layout.

ISP/Router            <->            Endian                          <->    Local Network
Gateway               <->   Nic0+Nic1 Bridged                 <->    Client
192.168.88.1        <->  UPlink1  192.168.88.15          <->    192.168.88.25 (any ip for client on subnet 88)
192.168.77.1        <->  UPlink2  192.168.77.15          <->    192.168.77.25 (any ip for client on subnet 77)

We've also tried adding a routing rule to force the 77 ip range traffic to go out uplink 2 that we've created.

I think you need to look at policy based routing, I am just re-merging my 3 uplinks and 4 or 5 LAN segments, so I'm doing the same sort of thing. ( Though w/o any proxy process, just traffic direction. )

simply defile/add the route..

it will auto accept relative policy....

Dashquid (http://dashquid.com)
fatlossprofessional.co.uk (http://fatlossprofessional.co.uk)
fatlossprofessional (http://fatlossprofessional.co.uk/how-to-lose-weight-fast/)
mobilehelper (http://mobilehelper.co.uk)
securetrip (http://securetrip.co.uk)
whichpetcover (http://whichpetcover.com)
google (http://google.com)
abc (http://abc.com)
facebook (http://facebook.com)
craigslist (http://craigslist.com)

The routing policy works, i can forward all traffic from subnet 88 through gateway 88.1, and all traffic from 77 subnet through gateway 77.1.

the problem is that what ever the default gate way is that is where the proxy pulls cache from, i want the proxy to pull cache from the correct gateway for that subnet.

get what i mean?

Hi,

You need create a firewall rule SNAT.

SOURCE      PORT              GATEWAY
77               any or 80        gw1
88               any or 80        gw2


All Traffic from 77 goes to gw1 and All traffic from 88 goes to gw2.....BUT, if you are using PROXY, all port 80 is redirect to proxy and the traffic doesn´t go out using the rule SNAT, always goes to default gw, you need create a other RULE:

SOURCE                          PORT           GATEWAY
IP_RED_INTERFACE            80                 GW2 or other link you want go out the web.

A think this can help a little bit.

               

yehhh, i m working on efw from last 5 years.