From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Daniel K." <daniel@yaTack.com>
Date: Tue, 14 May 2002 15:55:29 +0000
Subject: Re: [LARTC] iproute + mark question
Message-Id: <marc-lartc-102139186120409@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-102138771915888@msgid-missing>
In-Reply-To: <marc-lartc-102138771915888@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Ciprian Niculescu wrote:
> i did this i asked, this is what it is at sectio 6, in the link you 
> provided
> 
> Incoming                 /     \         Outgoing
>        -->[Routing ]--->|FORWARD|------->
>           [Decision]     \_____/        ^
>                |                        |
>                v                       ____
>               ___                     /    \
>              /   \                  |OUTPUT|
>             |INPUT|                  \____/
>              \___/                      ^
>                |                        |
>                 ----> Local Process ----
> 
> in this the local it's never "routing decision" but let's say it's for 
> simplicity :))
> 
> and your's is wrong too, Local Proces -> OUTPUT -> POSTROUTING -> Out
> 
> - so the routing decision is where?
The routing desicion is between OUTPUT an POSTROUTING,
	POSTROUTING means AFTER routing.

So you may say: "Locally generated packet" -> OUTPUT -> "Routing 
Desicion" -> POSTROUTING.

If you want to Mangle(e.g mark) Locally generated packets, you have to 
do so in the OUTPUT table. In this case it will be marked for the 
routing descicion which comes next.

Daniel K.

> - and i tryed to put the match in POSTROUTING and did not match
> 
> C
> 
> 
> Daniel K. wrote:
> 
>> Ciprian Niculescu wrote:
>>
>>> does anybody have the hole packet path, a grafic, with: mangle, nat, 
>>> filter, routing, tc, tunel, for local generated pachetd and for 
>>> FORWARDed pachets???
>>
>>
>>
>> This is how IPTables look like.
>>
>>           /----------\         /-------\         /-----------\
>> IN--->---< PREROUTING >--->---< FORWARD >--->---< POSTROUTING >--->--OUT
>>           \----------/         \-------/         \-----------/
>>              \                                            /
>>               \                                          /
>>             /-----\         /-------------\         /------\
>>            < INPUT >--->---< LOCAL PROCESS >--->---< OUTPUT >
>>             \-----/         \-------------/         \------/
>>
>>
>> Maybe you should read some of Rusty's Remarkably Unreliable Guides
>> http://netfilter.samba.org/unreliable-guides/
>>
>> In particular, section 6 of Linux 2.4 Packet Filtering HOWTO
>> http://netfilter.samba.org/unreliable-guides/packet-filtering-HOWTO/packet-filtering-HOWTO.linuxdoc.html 
>>
>>
>>
>> Daniel K.
>>
>> _______________________________________________
>> LARTC mailing list / LARTC@mailman.ds9a.nl
>> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> 
> 
> 
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/



_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/