Hi all, i'm running a linux ethernet bridge with HTB and netfilter support. For the firewalling part i mark some special pakets with -j MARK --set-mark 12 or --setmark 22. After that i use tc filter add dev eth0 parent 1:0 protocol ip prio 4 handle 12 fw classid 1:12 and tc filter add dev eth1 parent 2:0 protocol ip prio 4 handle 22 fw classid 2:22 That works very well but at some point of my project i need to switch over just using one mark (or more exact using just one firewall-rule) for both filters. So i tried to change the second filter: tc filter add dev eth0 parent 1:0 protocol ip prio 4 handle 12 fw classid 1:12 tc filter add dev eth1 parent 2:0 protocol ip prio 4 handle 12 fw classid 2:22 That did not work, just the first filter was used but the other never catched a paket. My question: is there a way to handle this by a mask for the handle for example? Any hints are very much appreciated! Thanks in advance, Mike. -- +++ GMX - Mail, Messaging & more http://www.gmx.net +++ Bitte lächeln! Fotogalerie online mit GMX ohne eigene Homepage!
