Hello everyone.
I have raised a proxy server on a router with openwrt, everything is fine except for one problem: it does not work through flow offload. Thus, the speed in the local network through this proxy server is quite know, exactly the same Internet speed when you disable hardware/software flow offloading. I think it's possible.
It's not. Flow-offloading tries to be smart by identifying packets that just need forwarding, without (further-) inspection (as they're part of an existing flow/ ~session) and pushing them into a fast-path of flows that can bypass the firewall and CPU. If you run a proxy on your router, there is no bypassing anymore, all those packets need to be processed by the CPU and have to take the slow-path (and on top of that, the proxy dæmon also adds its own load to the CPU).
2 Likes
In principle you can push expectation via own kmod to add continued connection to conntrack and subsequently to offload. You lose track whether connection closes or not.