Question

Locked

What Would be the configuration of BA Systems EN3500 for squid cache ?

By prasanta.sen ·
Guys, I have a ba systems en3500 running bgp in my network. under that router their is a AAA server whose users uses pppoe connection for getting internet. now i putted a cache server in my network for port 80 traffics. i configured IP-ACCESS LIST and ROUTE-MAP to my router to pass port 80 traffics from users through the cache server. but http:// pages are not opening.
For out going traffics, request from user comes into AAA server------>router Lan port------>cache engine--------->router lan port--------->router wan port-------->internet. And for incomming traffic, internet---------->router wan-------->router lan---------->cache engine--------->router lan--------->aaa server.

Giving the details of network
Suppose Router Wan Ip is 192.168.100.1
Router Lan Ip is - 192.168.4.1/255.255.255.248
AAA server wan ip is - 192.168.4.2/255.255.255.248
Cache server wan ip is -192.168.4.3/255.255.255.248

Network Diagram is 1st there is a Router, there from AAA server and Cache engine is connected with same gateway 192.168.4.1 through a unmanaged switch.

bgp is configured in my router as follows:

router bgp 12345
no auto-summary
timers bgp 150 450
bgp log-neighbor-changes
no synchronization
bgp deterministic-med
neighbor 192.168.100.2 remote-as 56789
address-family ipv4 unicast
redistribute static
network 192.168.1.0/24
network 192.168.2.0/24
network 192.168.3.0/24
network 192.168.4.0/24
neighbor 192.168.100.2 activate
neighbor 192.168.100.2 soft-reconfiguration inbound
exit-address-family
address-family ipv4 multicast
exit-address-family
!

!
ip route 0.0.0.0/0 192.168.100.2
ip route 192.168.1.0/24 192.168.4.2
ip route 192.168.2.0/24 192.168.4.2
ip route 192.168.3.0/24 192.168.4.2
ip route 192.168.4.0/24 192.168.4.2
(Please treat all ip's as public)

PLEASE TELL ME THE ACL, PBR, OR ROUTE-MAP OR ANY OTHER CONFIGURATION WHICH NEED TO ROUTER TO PASS ONLY WWW TRAFFICS THROUGH CACHE ENGINE AND OTHER TRAFFICS WILL GO THROUGH THE ROUTER DIRECTLY AS BY DEFAULT.
MY CONTACT NO IS +91 9831297021. PLZ CONTACT IF U HAVE ANY PROBLEM TO UNDERSTANDING THE DIAGRAM AND SCENARIO.

This conversation is currently closed to new comments.

4 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Collapse -

If your users are doing RADIUS authentication for web access

by robo_dev In reply to What Would be the configu ...

Then you would need to open/forward ports to allow radius authentication to happen.

Each client would also need a proxy exception so that the radius authentication attempt (is this a web page), does not go through the proxy server.

You say "there is a AAA server whose users uses pppoe connection for getting internet"

Explain what that means: Do you mean a user has to login to a web page to access internet?

Collapse -

Reponse To Answer

by prasanta.sen In reply to If your users are doing R ...

Users authenticateed into the mentioned server through windows pppoe. in server we uses NAT. when request going out frm server, it taking any one of live ip dynamicaly from the mentioned ip pools in router bgp which is nating into the server

Collapse -

What about incoming traffic?

by seanferd In reply to What Would be the configu ...

"to pass port 80 traffics from users through the cache server"

You need incoming port 80 to be open to clients.

What exactly do you get as an error in the web browsers?

Back to Networks Forum
4 total posts (Page 1 of 1)  

Related Discussions

Related Forums