On 07/10/2017 06:58 AM, Dirk Vleugels wrote:
> we’re looking for a way to set tcp_outgoing_mark based on runtime information
> - e.g. via external_acl_helper.
> Is this feasible at all?
Sure. Use an "external" ACL type to annotate the transaction, and use
transaction annotation(s) to select the
Hello,
we’re looking for a way to set tcp_outgoing_mark based on runtime information -
e.g. via external_acl_helper.
Currently, we use a static mapping (requests coming in via personalized IPSec
tunnel):
acl ten_zero src 10.0.0.0/16
tcp_outgoing_mark 0x0a ten_zero
to route outgoing traffi
