[squid-users] Reconfiguring Squid every few seconds

Mon Mar 21 05:11:15 UTC 2022

Hey Roee,

If Tiny-proxy works for you then it’s great.

All The Bests,

Eliezer

*	There are many ways to offer the same solution however the best solution is what works for you..

----

Eliezer Croitoru

NgTech, Tech Support

Mobile: +972-5-28704261

Email: ngtech1ltd at gmail.com <mailto:ngtech1ltd at gmail.com> 

From: roee klinger <roeeklinger60 at gmail.com> 
Sent: Monday, March 21, 2022 02:34
To: Squid Users <squid-users at lists.squid-cache.org>; Eliezer Croitoru <ngtech1ltd at gmail.com>
Subject: Re: [squid-users] Reconfiguring Squid every few seconds

Thank you everyone for your advice.

As far as I can tell, there is no graceful and easy way to do it in Squid out of the box,
I will have to use namespaces + virtual interfaces or mark outgoing traffic from Squid,
I am currently looking into these 2 solutions that you suggested, I will implement them
and update here how it goes after testing.

However, for now as much as I love Squid I need a fast and easy solution, so I decided to
use Tiny-proxy transparent proxy instead, where I can simply run the service 40 times in parallel since it is so light.
Then, if there is a reboot of the modem, I can simply restart the specific service I need,
without effecting the other services and users.

Of course, this only works if you have a really simple configuration, for example like my case:
traffic from port 8001 -> out from modem1
traffic from port 8002 -> out from modem2
...
...

I will update shortly when I find a Squid solution,
Roee

On 20 Mar 2022, 14:33 +0200, Eliezer Croitoru <ngtech1ltd at gmail.com <mailto:ngtech1ltd at gmail.com> >, wrote:

To give some perspective you can see the next example:

https://github.com/elico/mwan-nft-lb-example

but you need to learn first how network namespaces works in linux.

You will probably need to run squid in it’s own namespace which will be managed from the “main” or “root” namespace.

It will probably be similar to a management interface and virtual routers on products like Palo Alto.

Eliezer

----

Eliezer Croitoru

NgTech, Tech Support

Mobile: +972-5-28704261

Email: ngtech1ltd at gmail.com <mailto:ngtech1ltd at gmail.com> 

From: Eliezer Croitoru <ngtech1ltd at gmail.com <mailto:ngtech1ltd at gmail.com> >
Sent: Sunday, March 20, 2022 00:20
To: 'Squid Users' <squid-users at lists.squid-cache.org <mailto:squid-users at lists.squid-cache.org> >
Subject: RE: [squid-users] Reconfiguring Squid every few seconds

Hey Roee,

The best solution for you case is to use a network namespace Router between the squid instance to the actual modem interface.

You can attach each modem to a network namespace and leave squid to do it’s thing with a static IP address.

All The Bests,

Eliezer

----

Eliezer Croitoru

NgTech, Tech Support

Mobile: +972-5-28704261

Email: ngtech1ltd at gmail.com <mailto:ngtech1ltd at gmail.com> 

From: squid-users <squid-users-bounces at lists.squid-cache.org <mailto:squid-users-bounces at lists.squid-cache.org> > On Behalf Of roee klinger
Sent: Saturday, March 19, 2022 02:48
To: Squid Users <squid-users at lists.squid-cache.org <mailto:squid-users at lists.squid-cache.org> >
Subject: [squid-users] Reconfiguring Squid every few seconds

Hello,

I have a server with multiple 4G modems with Squid running on it, the 4G modems get an internal private IP that is dynamic (unfortunately this can't be changed),

I set up Squid to use the interfaces as follows:

tcp_outgoing_address <some_ip>

The configuration works well and everything works great, however, whenever I restart one of the modems (I have many, and I restart them a lot), I get a new internal private IP, and I need to reconfigure Squid, this means that I will be running "squid -k reconfigure" multiple times a minute.

Will this have a bad effect on Squid and traffic (I understand this does not cause Squid to restart)? What is my alternative?

Thanks,

Roee

_______________________________________________
squid-users mailing list
squid-users at lists.squid-cache.org <mailto:squid-users at lists.squid-cache.org> 
http://lists.squid-cache.org/listinfo/squid-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20220321/2de0c8c9/attachment-0001.htm>