I am considering writing a patch for Squid so that it maintains a packet's netfilter mark value if not fetched from the cache. This would be similar to the QOS functionality, in that there would also be an option to set the mark on a packet that is fetched from the cache.
I have done some initial scoping, but have discovered that in order to mark a packet using setsockopt(), the process needs to be run as root. My questions therefore are: 1. Because the marking process needs to be run as root, can this only be achieved by putting the mark function within the squid process that originally starts up, and stipulate that this has to be run as root? 2. Is any such patch likely to be accepted? Thanks, Andy
