On Wed, 28 Sep 2011 11:01:35 -0500, Luis Daniel Lucio Quiroz wrote:
2011/9/28 Benjamin <benjo11...@gmail.com>:
Hi,
I am looking for POLICY BASED ROUTING rules , which i need to use
route web
traffic to squid box which is configured for tproxy purpose.If
someone tried
it , please share your tips and feedback for that.
Network setup:
ROUTER ------------> PBR CONFIGURATION
|
|
|
|
SWITCH
| |
| |
| | -----SQUID BOX ( 1 interface )
|
BANDWITH
SHAPPER
|
|
END USERS
Thanks,
Benjo Fernandis
Easy,
# acl normal_service_net src 10.0.0.0/24
# acl good_service_net src 10.0.1.0/24
# tcp_outgoing_tos 0x00 normal_service_net
# tcp_outgoing_tos 0x20 good_service_net
with this you are marking tcp packets, then in your cisco/linux you
can do rules that depending mark and squid-ip will select an specific
rule table. look for "ip rule" command to specify tables rules if
you
are using linux.
Depending on your Squid version you may also have zph_* directives
(2.7), or qos_flows (3.1+) to play with. They set the TOS value based on
source flow type (HIT, MISS, etc).
Amos
