Re: [squid-users] problems configuring squid with zph (packet marking) from Amos Jeffries on 2012-08-30 (squid-users)

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Fri, 31 Aug 2012 00:58:32 +1200

On 31/08/2012 12:01 a.m., Mustafa Raji wrote:
> thanks any for you help
> i will use the clientside_tos,
> about marking packet using netfilter i really want to mark only tcp_hit packets not all the packets tcp_miss should not included in the packet marking,

Then both tcp_outgoing_tos and clientside_tos are not what you want they
mark *all* the ACL matched traffic and we have no ACL to filter by
HIT/MISS status in squid-3 yet.

You only want "qos_flows local-hit" by itself.

Amos

> i will try to use the 3.2, kindly would you tell me the linux os you used (most used linux distribution with 3.2) with this version of squid 3.2
>
> once again thanks
>
> --- On Thu, 8/30/12, Andrew Beverley <andy_at_andybev.com> wrote:
>
>> From: Andrew Beverley <andy_at_andybev.com>
>> Subject: Re: [squid-users] problems configuring squid with zph (packet marking)
>> To: "Mustafa Raji" <mustafa.raji_at_yahoo.com>
>> Cc: squid-users_at_squid-cache.org
>> Date: Thursday, August 30, 2012, 10:07 AM
>> On Thu, 2012-08-30 at 00:14 -0700,
>> Mustafa Raji wrote:
>>> hi i have a problem with zph configuration in squid
>> 3.1.11 in the squid
>>> wiki i find the zph configuration directive is
>> qos_flows and i want to
>>> mark the local-hit packet to root this packets locally
>>>
>>> the configuration in squid.conf file is
>>>
>>> acl localnet 10.10.10.0/24
>>> tcp_outgoing_tos 0xFF localnet
>> I think you want clientside_tos if you want to affect
>> packets going to
>> the local client. tcp_outgoing_tos is for packets going to
>> the remote
>> server.
>>
>>> qos_flows local-hit=0xFF
>>>
>>> applying these configuration directive and dump the
>> packets using
>>> tcpdump shows that, this configuration does not works
>> for me some
>>> output of tcpdump
>> From http://www.squid-cache.org/Doc/config/tcp_outgoing_tos/
>> "Often only multiples of 4 is usable as the two rightmost
>> bits have been
>> redefined for use by ECN (RFC 3168 section 23.1)"
>>
>>> i am using squid 3.1.11 with --enable-zph-qos, squid
>> works in the
>>> intercept mode and the os is debian squeeze
>> You may want to consider upgrading to the 3.2 branch
>> (although I
>> appreciate that this is not a Debian stable package). A lot
>> of
>> improvements have been made to the qos_flows code, and there
>> is also the
>> option to use netfilter marks which you may find more
>> flexible.
>>
>> Andy
>>
>>
>>
Received on Thu Aug 30 2012 - 12:58:43 MDT

This archive was generated by hypermail 2.2.0 : Thu Aug 30 2012 - 12:00:04 MDT