[K12OSN] http request on multi nic ltsp server
Steve Bercu
admin at bookpeople.com
Fri Jan 13 09:08:42 UTC 2006
hello everyone,
I'm upgrading our server and would like to utilize
squid/squidguard for client access. Basically, we
have clients on 2 floors. we run a transparent proxy
handling our filtering. However, clients on the 1st
floor should have different http access than the 2nd
floor. The problem is that if you don't run local
apps, the proxy will only see that the requests come
from the ltsp server address, not the specific client.
I thought that if the ltsp server had two nics, one
to serve each floor, that maybe the http request would
be made from the host/cleint specific lts.conf
definition of 'server'.
I've tried this, but it doesn't work. When reviewing
the squid log, the requests are made from whichever
interface is intialized first (ex:"# ifup ethx ethy",
ethx's address is the one found in the log)
Any idea how I can make this work?
below is my dhcpd.conf and lts.conf
many thanks in advance!
-David Neimeyer
#########################################
############# dhcpd.conf ################
default-lease-time 21600;
max-lease-time 21600;
ddns-update-style none;
allow booting;
allow bootp;
option subnet-mask 255.255.255.0;
option broadcast-address 192.150.1.255;
option routers 192.150.1.252;
option domain-name-servers 192.150.1.250;
option domain-name "bookpeople.com";
option root-path
"192.150.1.252:/opt/ltsp/i386";
option option-128 code 128 = string;
option option-129 code 129 = text;
# dynamic assignment for testing only; access specific
hosts below
shared-network WORKSTATIONS {
subnet 192.150.1.0 netmask 255.255.255.0 {
range dynamic-bootp 192.150.1.1 192.150.1.105;
use-host-decl-names on;
option log-servers 192.150.1.252;
# trick from Peter Rundle
<peter.rundle at au.interpath.net>
if substring (option vendor-class-identifier, 0,
9) = "PXEClient"
{
filename "/lts/pxe/pxelinux.0";
# NOTE: kernels are specified in
/tftpboot/lts/pxe/pxelinux.cfg/
}
else
{
filename "/lts/vmlinuz.ltsp";
}
}
}
group {
use-host-decl-names on;
option log-servers 192.168.0.251;
option routers 192.150.1.251;
host ws017 {
hardware ethernet 00:D0:B7:86:B7:24;
fixed-address 192.150.1.17;
filename "/lts/2.6.9-ltsp-3/pxelinux.0";
}
}
group {
use-host-decl-names on;
option log-servers 192.150.1.252;
option subnet-mask 255.255.255.0;
option broadcast-address 192.150.1.255;
option routers 192.150.1.252;
option domain-name-servers 192.150.1.250;
option domain-name "bookpeople.com";
option root-path
"192.150.1.252:/opt/ltsp/i386";
host ws016 { #wkst in tech office
hardware ethernet 00:D0:B7:7A:AB:31;
fixed-address 192.150.1.16;
filename
"/lts/2.6.9-ltsp-3/pxelinux.0";
}
}
########################################
############ lts.conf ##################
[Default]
SERVER = 192.150.1.252
XSERVER = auto
X_MOUSE_PROTOCOL = "IMPS/2"
X_MOUSE_DEVICE = "/dev/psaux"
X_MOUSE_RESOLUTION = 400
X_MOUSE_BUTTONS = 3
USE_XFS = N
SCREEN_01 = startx
SCREEN_02 = shell
[ws017]
SERVER = 192.150.1.251
More information about the K12OSN
mailing list