[squid-users] Squid marking QOS and matching marks with linux iptables problem !
Amos Jeffries
squid3 at treenet.co.nz
Mon May 25 07:02:18 UTC 2020
[NP: it would help if you replied through the list instead of directly
to me, even as a CC. Your messages keep getting diverted to spam folder. ]
On 25/05/20 4:26 am, Ahmad Alzaeem wrote:
> Hi Amos ,
>
> Sorry I'm confused a a bit …
>
> Are my results expected not to work with below :
>
>
> qos_flows mark local-hit=0xd7
> qos_flows mark local-miss=0xd7
>
>
> -A OUTPUT -m mark --mark 0xd7 -j ACCEPT
> -A OUTPUT -m connmark --mark 0xd7 -j ACCEPT
>
> ?
Squid should be MARK'ing packets with 0xd7.
Those iptables rules should match the packets MARK'ed with 0xd7.
Whether those statements are of any relevance depends on where your
iptables rules are configured in relation to all other rules and chains
your iptables is processing.
>
> Do I need to edit squid/iptables ?
>
Probably iptables. But not enough info to say how.
You asked about how to debug Squid MARK'ing earlier. What were the
results of that? did you see Squid doing any marking?
Amos
More information about the squid-users
mailing list