From mboxrd@z Thu Jan 1 00:00:00 1970 From: Leandro Travaglia Date: Sun, 09 Jan 2005 11:53:24 +0000 Subject: Re: [LARTC] CONNMARK problem Message-Id: <41E11B34.8080004@ig.com.br> List-Id: References: <1096050082.415465a2682a2@www.bonet.sk> In-Reply-To: <1096050082.415465a2682a2@www.bonet.sk> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: lartc@vger.kernel.org I see... I'll do this. But..... Is CONNMARK supported in newer versions of the Kernel? Wich one? Regards, LEANDRO TRAVAGLIA Nguyen Dinh Nam wrote: > it's because your kernel doesn't support CONNMARK, apply patch-o-matic > then recompile your kernel, then it'll work. > > Leandro Travaglia wrote: > >> Hi all, >> >> I have IPTABLES 1.2.10 and i have a weird problem with CONNMARK >> >> When i run: >> # iptables -v -t mangle -F >> # iptables -v -t mangle -A PREROUTING -p tcp -j CONNMARK --restore-mark >> CONNMARK tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 CONNMARK >> restore >> iptables: No chain/target/match by that name >> >> Why is that happening?? >> >> The command: >> # iptables -v -j CONNMARK -h >> returns: >> CONNMARK target v1.2.10 options: >> --set-mark value[/mask] Set conntrack mark value >> --save-mark [--mask mask] Save the packet nfmark in the connection >> --restore-mark [--mask mask] Restore saved nfmark value >> >> So everything seens fine to me........ >> >> Thanks... >> >> > > > > _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/