From owner-freebsd-isp Sun Dec 9 12:46:52 2001 Delivered-To: freebsd-isp@freebsd.org Received: from c007.snv.cp.net (c007-h012.c007.snv.cp.net [209.228.33.219]) by hub.freebsd.org (Postfix) with SMTP id 6A91F37B416 for ; Sun, 9 Dec 2001 12:46:46 -0800 (PST) Received: (cpmta 12857 invoked from network); 9 Dec 2001 12:46:45 -0800 Received: from 216.227.100.85 (HELO vector) by smtp.telocity.com (209.228.33.219) with SMTP; 9 Dec 2001 12:46:45 -0800 X-Sent: 9 Dec 2001 20:46:45 GMT From: "Dustin Puryear" To: "Dmitry Koltsov" , Subject: RE: Re[2]: Using DNAT and DNS round-robin Date: Sun, 9 Dec 2001 14:54:40 -0600 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <91254199064.20011209212915@hostonfly.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Why do you feel that Squid is a bad solution for use as a reverse proxy? Regarding you question about our goal: oour goal is to setup several web services across n webservers that should be available to external users. Regards, Dustin --- Dustin Puryear Information Systems Consultant http://members.telocity.com/~dpuryear In the beginning the Universe was created. This has been widely regarded as a bad move. - Douglas Adams > -----Original Message----- > From: Dmitry Koltsov [mailto:root@hostonfly.com] > Sent: Sunday, December 09, 2001 12:29 PM > To: Dustin Puryear > Cc: freebsd-isp@FreeBSD.ORG > Subject: Re[2]: Using DNAT and DNS round-robin > > > Configuring of round-robin under Bind is very simple. You can > create as much A records as you want and you'll receive round-robin > configuration. > To give more exact answer I should ask you: what you are looking > for? just load balancing and/or > high availability? > Also I think that Squid is not very good solution as minimum from your > customer's point of view. > We are using our own, DNS-based solution and we are happy with it. > Real issue with our cluster: http://www.hostonfly.net/mrtg1705/ - > no downtime as result > > Best regards, > Dmitry Koltsov > Host On Fly S.A. > mailto:root@hostonfly.com > > Sunday, December 09, 2001, you wrote to me: > > DP> I forgot to mention our third option, which also appears > quite viable. We > DP> are looking into the use of Squid, which has virtual hosting > support. Using > DP> this method we can forgo DNAT entirely. Any thoughts or > experience with this > DP> additional method? > > DP> Regards, Dustin > > DP> --- > DP> Dustin Puryear > DP> Information Systems Consultant > DP> http://members.telocity.com/~dpuryear > DP> In the beginning the Universe was created. > DP> This has been widely regarded as a bad move. - Douglas Adams > > > >> -----Original Message----- > >> From: owner-freebsd-isp@FreeBSD.ORG > >> [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Dustin Puryear > >> Sent: Sunday, December 09, 2001 11:47 AM > >> To: freebsd-isp@freebsd.org > >> Subject: Using DNAT and DNS round-robin > >> > >> > >> I posted earlier concerning using FreeBSD with a web service with one > >> firewall and two web servers, all running FreeBSD 4.4-RELEASE. > >> Basically, we > >> feel that we have two solutions that would work. First, we can > setup each > >> web server with a series of interface aliases for each IP-based virtual > >> host. Second, we could maintain a private internal network and > assign each > >> web IP address to be used on the firewall's public interface > and then use > >> DNAT to send the request to the web servers. I am thinking the second > >> solution is best. > >> > >> Is this how most of you do this? Also, can I configure FreeBSD > to use some > >> type of round robin so that we can use multiple web servers? > My concern is > >> that when I create the routing tables the IP addresses are used > >> internally, > >> and not symbolic names, so specifying a hostname won't have the desire > >> result even if I have DNS setup to round robin that hostname > >> between several > >> addresses. > >> > >> Any help? > >> > >> BTW, I may post a similar question to freebsd-questions, so > you can ignore > >> one of these. :) > >> > >> Regards, Dustin > >> > >> --- > >> Dustin Puryear > >> Information Systems Consultant > >> http://members.telocity.com/~dpuryear > >> In the beginning the Universe was created. > >> This has been widely regarded as a bad move. - Douglas Adams > >> > >> > >> > >> To Unsubscribe: send mail to majordomo@FreeBSD.org > >> with "unsubscribe freebsd-isp" in the body of the message > >> > > > DP> To Unsubscribe: send mail to majordomo@FreeBSD.org > DP> with "unsubscribe freebsd-isp" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message