* iptables mangle & iproute
@ 2002-12-18 3:11 Arindam Haldar
0 siblings, 0 replies; only message in thread
From: Arindam Haldar @ 2002-12-18 3:11 UTC (permalink / raw)
To: NETFILTER
i all,
an extract of my rule tables...
40: from all to 203.x.x.64/25 lookup TABLEa
40: from all fwmark 40 lookup TABLEa
50: from 203.x.x.0/24 lookup TABLEb
iptables mangles are as follows..
root@ICG:root# iptables -nvL -t mangle
Chain PREROUTING (policy ACCEPT 7995K packets, 2646M bytes)
pkts bytes target prot opt in out source destination
85 6908 MARK all -- * * 0.0.0.0/0 203.x.x.64/25
MARK set 0x40
Chain INPUT (policy ACCEPT 526K packets, 252M bytes)
pkts bytes target prot opt in out source destination
0 0 MARK all -- * * 203.x.x.64/29 0.0.0.0/0
MARK set 0x40
im not able to find the problem for why i cant trace or ping to
203.x.x.64/25 network and vice-versa.
i want to add that all forwading rule are there.. it was working when i
didnt used _fwmark_ ..want to use fwmark for policy routing...
one last but not least things to ask is --> _marking_ based policy
routing a good solution that one without _marking_ ???
thanking in advance...
A.H
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2002-12-18 3:11 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2002-12-18 3:11 iptables mangle & iproute Arindam Haldar
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.