On Sat, 2002-10-26 at 15:44, Aigars Mahinovs wrote: > Hi all, > > I am trying to priorityse outgoing traffic basing on UID of the sender. > Script follows: > > # First mark packets with their respective priority > > iptables -t mangle -F OUTPUT > > iptables -t mangle -A OUTPUT -m owner --uid-owner root -j MARK > --set-mark 1 > iptables -t mangle -A OUTPUT -m owner --uid-owner aigarius -j MARK > --set-mark 2 > iptables -t mangle -A OUTPUT -m owner --uid-owner bind -j MARK > --set-mark 3 > iptables -t mangle -A OUTPUT -m owner --uid-owner proxy -j MARK > --set-mark 4 > iptables -t mangle -A OUTPUT -m owner --uid-owner nobody -j MARK > --set-mark 5 > iptables -t mangle -A OUTPUT -m owner --uid-owner www-data -j MARK > --set-mark 6 > iptables -t mangle -A OUTPUT -m owner --uid-owner ftp -j MARK --set-mark > 7 > iptables -t mangle -A OUTPUT -m owner --uid-owner ivarix -j MARK > --set-mark 8 > iptables -t mangle -A OUTPUT -m owner --uid-owner blacky -j MARK > --set-mark 9 > iptables -t mangle -A OUTPUT -j MARK --set-mark 666 This won't work the way you want it to. MARK doesn't terminate the rule-traversal... so all packets will be marked as 666 in the end. -- /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/