Hello lartc, Q1: If I want select subhet, I wrote ...u32 match ip dst a.d.r.es/net police ... How I can say "all except z.x.y" ? Both src/dest addr/port - I foundn't this info in HOWTO :((( Q2: Why I can't (or not allowed) to create more then one class into !ingress! queue? I know, it's incoming trafic? but why? it's look simply: (yes, i may be wrong:) If first incomng packet owerlimit own filtered class - then drop, else pass... Why it's hardly then outgoing (drop only!!)? or, if it's possible - give a sample, please. Thanks! -- Best regards, Ray-Nger mailto:ray-nger@yandex.ru
