From mboxrd@z Thu Jan  1 00:00:00 1970
From: Oki DZ okidz@telkom.net
Date: Mon, 27 Nov 2000 07:03:34 +0000
Subject: [LARTC] Firewall marks
Message-Id: <marc-lartc-98373938216980@msgid-missing>
List-Id: <lartc.vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

<PRE>Hi,

I'm new to this list, and I have some questions.
I'd like to be able to provide priorities for the web users in my network.
Web access is always done via Squid.

Excerpt from the &quot;Linux 2.4 Advanced Routing HOWTO&quot; (v0.0.3 $Date:
2000/04/01 13:27:51 $):
&quot;9.1 The &quot;fw&quot; classifier
...
That's all there is to it! This is the (IMHO) easy way, the other ways are
I think harder to understand. Note that you can apply the full power of
the firewalling code with this classifier, including matching MAC
addresses, user IDs and anything else the firewall can match.&quot;

I'm interested in the above &quot;user IDs&quot;. How can I set an &quot;fw&quot; classifier
so that it works by &quot;tagging&quot; the outgoing packets (that go to port 80,
anywhere) with the usernames of the Squid users? FYI, the user
authentication is handled by PAM (Squid's pam_auth); so basically the
users are the Linux machines' users (those who listed in /etc/passwd). Is
there any module to install? Scripts to write? 

Thanks in advance,
Oki



</PRE>