Página 2 de 2 PrimeiroPrimeiro 12
+ Responder ao Tópico



  1. Segui todo o tutorial, mas ainda não está funcionando. Apliquei todos os patches corretamente, o kernel foi compilado, o iptables, o squid, tudo aparentemente deu certo.

    Acredito que deva ser algum erro na configuração da bridge e nas rotas. O exemplo apresentado no tutorial não está explicado e por isso não consegui adaptá-lo para minha necessidade.

    .... segue transcrição do tutorial:

    Bridge Setup

    We configure our system as a network bridge, which means that it sits between two physical devices on our network and relays the packets between them. However, there's a twist: we intercept certain packets (those destined for port 80) and shunt them to Squid for processing.
    You'll need two ethernet cards in your machine to bridge between (one "in" and one "out", as it were). You can use another card for a management IP address, or you can actually assign an address to the bridge itself and reach the machine just as you would a "real" interface.
    In order to set up the bridge, we need to make a few tweaks to the system. First, we need to install some software that's necessary for setting up a bridge:
    apt-get install bridge-utils

    Next, edit /etc/network/interfaces. You should already have a stanza for a statically configured interface (e.g., eth0). Keep the settings for the stanza, but replace the interface name with br0. Also, add the line bridge_ports ethXXX ethYYY to add them to the bridge. For example:
    auto br0iface br0 inet static bridge_ports eth0 eth1 address 192.168.0.100 netmask 255.255.255.0 gateway 192.168.0.1

    Additionally, if your setup is like ours you'll need to add some routing to the box so it knows where to send packets. Our Squid box sits just between our firewall/router and LAN. Thus, it needs to be told how to route packets to the LAN and packets to the outside world. We do this by specifying the firewall as the "gateway" in the interfaces file, and adding a static route for our LAN. Thus, you would add the following lines to /etc/network/interfaces in the br0 stanza:
    up route add -net 192.168.1.0/24 gw 192.168.1.1 down route del -net 192.168.1.1/24 gw 192.168.1.1

    We'll need to tell the kernel that we're going to forward packets, so make sure the following are set in /etc/sysctl.conf:
    net.ipv4.conf.default.rp_filter=1net.ipv4.conf.default.forwarding=1net.ipv4.conf.all.forwarding=1

    Once you're all set, the easiest thing to do is reboot for the bridge config to take effect. The other settings should now be working also. cat /proc/sys/net/ipv4/ip_forward to confirm that the machine is in forwarding mode.


    Alguém poderia passar um exemplo de configuração da bridge?
    Última edição por e-eduardo; 15-12-2008 às 20:53.

  2. Pelo que estive olhando meu problema pode estar também no parâmetro: tcp_outgoing_address; eu o configurei com o endereço do meu roteador:

    tcp_outgoing_address 200.xxx.xxx.14

    Minha rede está assim:

    ----<<ROUTER>>---<<SW1>>---<<TPROXY+SQUID+BRIDGE>>---<<COMP.TESTES>>

    Router: 200.xxx.yyy.14/28

    TProxy: 200.xxx.yyy.3/28 (bridge eth0 + eth1)

    Computador de teste: 200.xxx.yyy.7/28 gw 200.xxx.yyy.14



  3. e-eduardo conseguiu configurar, estou com o mesmo problema aqui, se puder me dar uma luz agradeco.

  4. O outgoing tem que ser o gateway de saida para a net






Tópicos Similares

  1. Respostas: 4
    Último Post: 01-12-2014, 20:48
  2. Mudar ip do cliente com mais frequencia
    Por pepoclv no fórum Redes
    Respostas: 1
    Último Post: 02-10-2012, 23:28
  3. Respostas: 3
    Último Post: 24-01-2011, 17:38
  4. Respostas: 1
    Último Post: 22-03-2006, 09:24
  5. como fazer para usuario nao sair do HOME?????!!
    Por MAJOR no fórum Servidores de Rede
    Respostas: 11
    Último Post: 25-02-2004, 20:49

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L