[squid-users] tcp_outgoing_mark via runtime lookup

Dirk Vleugels dvl at 2scale.net
Mon Jul 10 12:58:09 UTC 2017


Hello,

we’re looking for a way to set tcp_outgoing_mark based on runtime information - e.g. via external_acl_helper. 

Currently, we use a static mapping (requests coming in via personalized IPSec tunnel):

acl ten_zero   src 10.0.0.0/16

tcp_outgoing_mark 0x0a ten_zero

to route outgoing traffic to the destination tunnel. In the future we’ll have to obtain the „configured“ source-ip for a customer from a 3rd party service (rest interface most likely).

Is this feasible at all?

Regards,
Dirk 



More information about the squid-users mailing list