i did this i asked, this is what it is at sectio 6, in the link you provided
Incoming / \ Outgoing -->[Routing ]--->|FORWARD|-------> [Decision] \_____/ ^ | | v ____ ___ / \ / \ |OUTPUT| |INPUT| \____/ \___/ ^ | | ----> Local Process ----
in this the local it's never "routing decision" but let's say it's for simplicity :))
and your's is wrong too, Local Proces -> OUTPUT -> POSTROUTING -> Out
- so the routing decision is where?
The routing desicion is between OUTPUT an POSTROUTING, POSTROUTING means AFTER routing.
So you may say: "Locally generated packet" -> OUTPUT -> "Routing Desicion" -> POSTROUTING.
If you want to Mangle(e.g mark) Locally generated packets, you have to do so in the OUTPUT table. In this case it will be marked for the routing descicion which comes next.
Daniel K.
- and i tryed to put the match in POSTROUTING and did not match
C
Daniel K. wrote:
Ciprian Niculescu wrote:
does anybody have the hole packet path, a grafic, with: mangle, nat, filter, routing, tc, tunel, for local generated pachetd and for FORWARDed pachets???
This is how IPTables look like.
/----------\ /-------\ /-----------\ IN--->---< PREROUTING >--->---< FORWARD >--->---< POSTROUTING >--->--OUT \----------/ \-------/ \-----------/ \ / \ / /-----\ /-------------\ /------\ < INPUT >--->---< LOCAL PROCESS >--->---< OUTPUT > \-----/ \-------------/ \------/
Maybe you should read some of Rusty's Remarkably Unreliable Guides http://netfilter.samba.org/unreliable-guides/
In particular, section 6 of Linux 2.4 Packet Filtering HOWTO
http://netfilter.samba.org/unreliable-guides/packet-filtering-HOWTO/packet-filtering-HOWTO.linuxdoc.html
Daniel K.
_______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
_______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
