> I suspect that your packets are not being marked correctly. If some of > the packets are going into the '10' class, but the majority are not, > then for some reason the majority are not being captured. > > Please provide some more information on your setup (probably better to > the thread on the Squid list), or maybe do some closer inspection of > your packets MARK value using the LOG target. > > Andy I've attached a graph which explains what are the marked packets. The general goal is to do a QoS based on user ip. If I had no proxy, it would be easy. However, since I've a proxy, my firewall sees the proxy ip, not the users IP. So, I want to use Squid to mark packets according to the user ip, in order to apply my QoS rules in function of mark. My logs say that marked packets are packets from squid to web server. Another way to do what I want to do would be add an address by user on my network interface, use the tcp_outgoing_address directive on squid, and manage my QoS with the firewall on my gateway, based on the ip used by the proxy. But it would be... heavy.
Attachment:
proxy.odg
Description: application/vnd.oasis.opendocument.graphics
Attachment:
signature.asc
Description: This is a digitally signed message part.
