Ok, thanks Henrik, we will try the mark in the mangle table.

Regards
Wim

Henrik Nordstrom wrote:

>On Thu, 18 Sep 2003, Wim Ceulemans wrote:
>
>  
>
>>Ok, but the problem is that setting a mark on the packet isn't 
>>considered as a change to the packet, since marks only live in
>>the kernel and have no effect on the packet.
>>    
>>
>
>Changing marks are considered a change in the packet in this context.
>
>If mangle OUTPUT changes any of Source IP, Destination IP, ToS or nfmark
>then the packet is automatically rerouted by iptables.
>
>Regards
>Henrik
>
>  
>


-- 
Wim Ceulemans
R&D Engineer

Secure Internet Communication with aXs Guard

Able NV
Leuvensesteenweg 282 - B-3190 Boortmeerbeek - Belgium
Phone: + 32 15 50.44.00 - Fax: + 32 15 50.44.09
E-mail: wim.ceulemans@able.be



--
Security check on this e-mail has been done by aXs GUARD
(http://www.axsguard.com)