Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid HA support

    Scheduled Pinned Locked Moved
    Cache/Proxy
    2
    3
    568
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • viktor_gV
      viktor_g Netgate
      last edited by

      Squid package 0.4.44_26 now supports HA / CARP interfaces:
      Screenshot from 2020-06-11 19-06-44.png

      This is mainly for Transparent mode and IPv6 squid configurations.
      Don't forget to generate Local Cache on the secondary node and configure XMLRPC Sync tab!

      in case of IPv4, it's easier to use port forward to 127.0.0.1:3128:

      • Bind Squid to Loopback (127.0.0.1) interface.
      • Create a port forward from <CARP IP>:3128 to 127.0.0.1:3128.
      • Have your users hit <CARP IP>:3128.
      R 1 Reply Last reply Reply Quote 1
      • viktor_gV
        viktor_g Netgate
        last edited by

        Reverse proxy too:
        Screenshot from 2020-07-04 08-31-20.png

        1 Reply Last reply Reply Quote 0
        • R
          reberhar @viktor_g
          last edited by

          @viktor_g
          Hi Viktor,

          I have been using HA for quite sometime, but have been puzzled how to configure Squid because I am also using pfBlocker. pfBlocker does not display HA addresses. After reading your post I am assuming that the LAN of pfBlocker will find its way to the right HA interface.

          There is always something new to learn, one of my employees said today, and I seem always to be a newbie in some area. However exposing my ignorance has taught me a great deal.

          From your post, could you please explain

          in case of IPv4, it's easier to use port forward to 127.0.0.1:3128:

          Bind Squid to Loopback (127.0.0.1) interface.
Create a port forward from <CARP IP>:3128 to 127.0.0.1:3128.
Have your users hit <CARP IP>:3128.

          I would like to know the why and the how. I think I know what is going on here and even how to do it, but I have not spent much time doing Squid for a while and want to be sure.

          1. Why is it a good idea to do this?
          2. Where do I bind Squid to Loopback? maybe obvious but guessing gets me into trouble.
          3. I have several HA LANs. There is only one mapping here. Can I map multiple addresses to 127.0.0.1?
          4. Having my users "hit" the CARP address happens automatically I think.

          Thanks for your patience and help.

          Roy

          1 Reply Last reply Reply Quote 0
          • First post
            Last post