[K12OSN] http request on multi nic ltsp server

Steve Bercu admin at bookpeople.com
Fri Jan 13 09:08:42 UTC 2006 

hello everyone,

I'm upgrading our server and would like to utilize
squid/squidguard for client access.  Basically, we
have clients on 2 floors.  we run a transparent proxy
handling our filtering.  However, clients on the 1st
floor should have different http access than the 2nd
floor.  The problem is that if you don't run local
apps, the proxy will only see that the requests come
from the ltsp server address, not the specific client.
 I thought that if the ltsp server had two nics, one
to serve each floor, that maybe the http request would
be made from the host/cleint specific lts.conf
definition of 'server'.  

I've tried this, but it doesn't work.  When reviewing
the squid log, the requests are made from whichever
interface is intialized first (ex:"# ifup ethx ethy",
ethx's address is the one found in the log)

Any idea how I can make this work?

below is my dhcpd.conf and lts.conf
many thanks in advance!
-David Neimeyer
#########################################
############# dhcpd.conf ################

default-lease-time            21600;
max-lease-time                21600;
ddns-update-style none;
allow booting;
allow bootp;

option subnet-mask            255.255.255.0;
option broadcast-address      192.150.1.255;
option routers                192.150.1.252;
option domain-name-servers    192.150.1.250;
option domain-name            "bookpeople.com";
option root-path             
"192.150.1.252:/opt/ltsp/i386";
option option-128 code 128 = string;
option option-129 code 129 = text;

# dynamic assignment for testing only; access specific
hosts below
shared-network WORKSTATIONS {
  subnet 192.150.1.0 netmask 255.255.255.0 {
    range dynamic-bootp 192.150.1.1 192.150.1.105;
     use-host-decl-names       on;
     option log-servers        192.150.1.252;

     # trick from Peter Rundle
<peter.rundle at au.interpath.net>
     if substring (option vendor-class-identifier, 0,
9) = "PXEClient"
     {
        filename      "/lts/pxe/pxelinux.0";
          # NOTE: kernels are specified in
/tftpboot/lts/pxe/pxelinux.cfg/
     }
     else
     {
        filename    "/lts/vmlinuz.ltsp";
     }
  }
}

 
group	{
    use-host-decl-names       on;
    option log-servers        192.168.0.251;
    option routers            192.150.1.251;

   host ws017 {
	hardware ethernet     00:D0:B7:86:B7:24;
        fixed-address         192.150.1.17;
	filename	      "/lts/2.6.9-ltsp-3/pxelinux.0";
     }
}

group {

use-host-decl-names   on;	
option log-servers            192.150.1.252;
option subnet-mask            255.255.255.0;
option broadcast-address      192.150.1.255;
option routers                192.150.1.252;
option domain-name-servers    192.150.1.250;
option domain-name            "bookpeople.com";
option root-path             
"192.150.1.252:/opt/ltsp/i386";


  host ws016 {				#wkst in tech office
        hardware ethernet     00:D0:B7:7A:AB:31;
        fixed-address         192.150.1.16;
        filename             
"/lts/2.6.9-ltsp-3/pxelinux.0";
     }
    
}

########################################
############ lts.conf ##################

[Default]
        SERVER             = 192.150.1.252
        XSERVER            = auto
        X_MOUSE_PROTOCOL   = "IMPS/2"
        X_MOUSE_DEVICE     = "/dev/psaux"
        X_MOUSE_RESOLUTION = 400
        X_MOUSE_BUTTONS    = 3
        USE_XFS            = N
        SCREEN_01          = startx
	SCREEN_02	   = shell
[ws017]
	SERVER		   = 192.150.1.251

More information about the K12OSN mailing list