Another Squid + MultiWan Thread :D
-
Hi all,
So I finally got Squid, WPAD and Squidguard working on v2.2.4 using these 2 sites:
http://bluecoat.force.com/knowledgebase/articles/Solution/HowcanIconfigurethewpaddatsothatsomesubnetsdontusetheproxy
http://irj972.co.uk/articles/pfSense-WPAD-PAC-configuration
It works like an absolute bomb, I am able to block both http and https without pesky transparent proxies and man-in-the-middle headaches :D
From what I have read there is no effective way to have Squid work with failover gateways. I've looked everywhere and read tons of posts. I don't really care so much for automatic failover as we have guys on site full time (usually I just change the default gateway manually when our main WAN connection drops). I do however occasionally push some clients through a separate gateway when demand get high by using firewall rules. It seems that Squid still pushes the traffic through the default gateway( as is expected from what I have read all over the place). Is there any way to remedy this seeing as it is only for a few clients?
I've read some guys use virtual pfsense's for Proxy and each WAN connection and then do failover on the main box. I have no idea how one gets accurate proxy data from this (presumably all traffic will be shown as originating from 1 IP, etc) and it just seems like a very convoluted setup. Could anybody possibly assist?
Thanks for any advice.