[squid-users] squid and iptables
Amos Jeffries
squid3 at treenet.co.nz
Sat Oct 13 06:33:14 UTC 2018
On 13/10/18 6:08 PM, morteza omidian wrote:
> tanx again.
> Ok, if I want to know connmark of packets and connection in squid and
> then select them with an ACL inside of squid and then again mark them
> with "tcp_outgoing_mark", is that possible??
>
Yes.
> In this page <http://www.squid-cache.org/Doc/config/clientside_mark/> i
> don't see what you said!
> The ACL that be configured only match with clients source ip addresses
> or domain and ..., not connmark!
That is a directive for marking inbound / client connections from the
Squid end - after they have been received.
To fetch an existing mark placed by iptables is an "acl" line. ACL types
are all documented in here:
<http://www.squid-cache.org/Doc/config/acl/>
Amos
More information about the squid-users
mailing list