From mboxrd@z Thu Jan  1 00:00:00 1970
From: Vladislav Kurz <vladislav.kurz@webstep.net>
Subject: Re: MARK and CONNMARK
Date: Wed, 16 Jul 2008 13:05:01 +0200
Message-ID: <200807161305.01487.vladislav.kurz@webstep.net>
References: <200807161046.39247.vladislav.kurz@webstep.net> <200807161233.51463.vladislav.kurz@webstep.net> <487DD24F.2020707@netfilter.org>
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
Return-path: <netfilter-owner@vger.kernel.org>
In-Reply-To: <487DD24F.2020707@netfilter.org>
Content-Disposition: inline
Sender: netfilter-owner@vger.kernel.org
List-ID: <netfilter.vger.kernel.org>
Content-Type: text/plain; charset="us-ascii"
To: netfilter@vger.kernel.org
Cc: Pablo Neira Ayuso <pablo@netfilter.org>

On Wednesday 16 of July 2008, Pablo Neira Ayuso wrote:
> Vladislav Kurz wrote:
> >> As for the point to manuals, man iptables  is usually in good shape.
> >
> > Ok, I can read this, but i just wonder what is the difference and how can
> > I use connmark. Just marking connections for fun? What other use they are
> > for?
> >
> > connmark -
> > This module matches the netfilter mark field associated with a connection
> >
> > mark -
> > This module matches the netfilter mark field associated with a packet
>
> Probably this can be a nice kick off.
>
> http://home.regit.org/?page_id=7

Thanks, that's the kind of info I was looking for.

-- 
Regards
        Vladislav Kurz