Multi-WAN Failover problem with Squid Proxy
-
Hello guys,
I'm having a problem when a failover to WAN2 occurs; I have tried some tutorials from here but with no success.
Whenever I try to access a website, I receive the following error screen message:**While trying to retrieve the URL: http://www.google.com.br/search?
The following error was encountered:
Connection to Failed
The system returned:(65) No route to host
The remote host or network may be down. Please try the request again.Your cache administrator is admin@localhost.
Generated Thu, 27 Sep 2012 11:12:21 GMT by localhost (squid/2.7.STABLE9)**This is not a DNS problem as I can ping external IPs normally. When on WAN1 it works fine.
My configuration is pretty simple:- Wan1, Wan2 from different ISPs; Gateway group Wan1 tier1, Wan2 tier2;
- Floating rule for TCP; WAN1 WAN2 out to gateway failover group
- On Proxy Server, interface>LAN, Transparent proxy, tcp_outgoing_address 127.0.0.1;
Any help would be appreciated
-
What squid version?
-
-
Did you tried with squid3 and "dnsv4 first" option?
-
Did you tried with squid3 and "dnsv4 first" option?
I have now installed squid3, and get the following error message:
51 network is unreachable
-
Check your routes, both versions return routing errors.
-
Check your routes, both versions return routing errors.
I have no static routes, these are my gateway and proxy config:
-
Are you using gateway ip to monitor gateway ip? If so, pfsense will only detect offline gateway when it's powered off.
-
Are you using gateway ip to monitor gateway ip? If so, pfsense will only detect offline gateway when it's powered off.
Yes , I didn't change monitor IP, what should I use there?
Anyway, on Dashboard I can see the gateway is down, not sure this is related to what you said
-
Did you forced a gateway on dns config?
Does your dns server works on both links?
-
Did you forced a gateway on dns config?
Does your dns server works on both links?
I don't think I forced it
As I said DNS works on backup connection
-
See http://forum.pfsense.org/index.php/topic,38882.0.html and make certain you have followed all of the steps. The floating rule and "tcp_outgoing_address 127.0.0.1" are important pieces of the puzzle which are not immediately obvious.