I am considering writing a patch for Squid so that it maintains a
packet's netfilter mark value if not fetched from the cache. This would
be similar to the QOS functionality, in that there would also be an
option to set the mark on a packet that is fetched from the cache.
I have done some initial scoping, but have discovered that in order to
mark a packet using setsockopt(), the process needs to be run as root.
My questions therefore are:
1. Because the marking process needs to be run as root, can this only be
achieved by putting the mark function within the squid process that
originally starts up, and stipulate that this has to be run as root?
2. Is any such patch likely to be accepted?
Thanks,
Andy
Received on Tue Jun 22 2010 - 02:54:44 MDT
This archive was generated by hypermail 2.2.0 : Tue Jun 22 2010 - 12:00:07 MDT