|
Brent Cook wrote:
>
> Joe:
>
> This isn't exactly what you asked for, but the effect is the same. After
> marking a packet like so:
thanks,
I hadn't thought about this way of doing it. Mathematically it should be
equivelent, but it requires that the packet does get marked and nothing wierd
happens and I haven't flubbed up something else.
I'd really like to match the mark just in case.
> I looked in the man page, and couldn't figure out where --mark is
> supposed to go.
at least that's two of us.
Horms sent me this offline. iptables accepts
the syntax - now to see if I can track packets...
modprobe iptable_mangle
modprobe ipt_MARK
iptables -t mangle -A PREROUTING -d 192.168.0.1 \
-m mark -j MARK --set-mark 1 --mark 1
iptables -t mangle -A PREROUTING \
-m mark --mark 1 -j LOG --log-level DEBUG --log-prefix "fwmark 1: "
Joe
--
Joseph Mack PhD, Senior Systems Engineer, Lockheed Martin
contractor to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
|
