Behind firewalls

From: Dick Connell <connell@dont-contact.us>
Date: Tue, 8 Dec 1998 17:27:10 -400

Hi -

I have squid servers(1.1.20) on our intranet which is protected from
the Internet by multiple firewall machines. The firewalls do not run
squid. I have set up some squid servers with several firewall
machines machines as parents:

        cache_host xxx.yyy.zzz.1 parent 80 8130 no-query
        cache_host xxx.yyy.zzz.2 parent 80 8130 no-query

and I have set up others to round-robin between firewall parents:

         cache_host xxx.yyy.zzz.2 parent 80 8130 no-query round-robin
         cache_host xxx.yyy.zzz.3 parent 80 8130 no-query round-robin

my problem is:

When the firewalls are slow to respond the squid servers eventually
feel there are no parents to get requests from and they stop
accepting TCP requests. The firewalls are the only way to get
requests destined for the Internet. I need to change this
feature of squid or lengthen the amount of time for a response from
the firewalls. Anything I can do?

I am upgrading to 2.0.2 - will I have the same problems?

I have been using squid for about six months and am very happy with
it with the exception of the above.

Thank's for a great server!

TIA,

Dick Connell
Received on Tue Dec 08 1998 - 15:27:52 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:43:35 MST