Hi,
i have a very exciting question. (Well, actually it is exciting for me
only). I have 3 identical squid servers with squid-2.7.STABLE5.
There is a Cisco content switch witch a common ip address for the 3
servers for load balancing and failover purposes.
There is a common dns name for the proxy called proxy.mycompany.com,
and 3 dns names for the 3 servers, proxy[4,5,6].mycompany.com.
The users need to authenticate themselves with email address and
password (on ldap) to use the proxy and they are not allowed to
authenticate from 2 or more comuters at the same time. (ttl is 10
minutes)
My problem is (actually it is not my problem, but i have to solve it)
that if a user sets the proxy in the browser for proxy4 on
workstation1 and on workstation2 he/she sets it to proxy5, he/she can
use it on 2 different workstations, which is not allowed.
How can i achieve that the restrictions are enforced for the 3 squid
servers together at the same time?
Any idea is welcomed!
(My first idea is to use some sort of external_acl_type, and write a
helper and maintain a session database, but this sound to complicated
for me )
Thanks,
Gellert
Received on Tue Apr 24 2012 - 12:49:50 MDT
This archive was generated by hypermail 2.2.0 : Tue Apr 24 2012 - 12:00:04 MDT