[squid-users] squid and iptables
morteza omidian
morteza1131 at yahoo.com
Sat Oct 13 08:06:27 UTC 2018
Cat I Keep Connection marks when I use Tproxy??!
Is "acl aclname clientside_mark mark[/mask]" directive only works on squid4 and up??Can i use it in squid3?Is only way to installing squid4 download the source code??
Tank You
On Saturday, October 13, 2018, 10:03:33 AM GMT+3:30, Amos Jeffries <squid3 at treenet.co.nz> wrote:
On 13/10/18 6:08 PM, morteza omidian wrote:
> tanx again.
> Ok, if I want to know connmark of packets and connection in squid and
> then select them with an ACL inside of squid and then again mark them
> with "tcp_outgoing_mark", is that possible??
>
Yes.
> In this page <http://www.squid-cache.org/Doc/config/clientside_mark/> i
> don't see what you said!
> The ACL that be configured only match with clients source ip addresses
> or domain and ..., not connmark!
That is a directive for marking inbound / client connections from the
Squid end - after they have been received.
To fetch an existing mark placed by iptables is an "acl" line. ACL types
are all documented in here:
<http://www.squid-cache.org/Doc/config/acl/>
Amos
_______________________________________________
squid-users mailing list
squid-users at lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20181013/1da7d095/attachment.html>
More information about the squid-users
mailing list