On Monday 05 May 2003 20:10, miller69@xxxxxxx wrote:
> Hi all,
>
> i'm running a linux ethernet bridge with HTB and netfilter support. For
> the firewalling part i mark some special pakets with -j MARK --set-mark 12
> or --setmark 22. After that i use
>
> tc filter add dev eth0 parent 1:0 protocol ip prio 4 handle 12 fw classid
> 1:12 and
> tc filter add dev eth1 parent 2:0 protocol ip prio 4 handle 22 fw classid
> 2:22
>
> That works very well but at some point of my project i need to switch over
> just using one mark (or more exact using just one firewall-rule) for both
> filters. So i tried to change the second filter:
>
> tc filter add dev eth0 parent 1:0 protocol ip prio 4 handle 12 fw classid
> 1:12
> tc filter add dev eth1 parent 2:0 protocol ip prio 4 handle 12 fw classid
> 2:22
>
> That did not work, just the first filter was used but the other never
> catched a paket. My question: is there a way to handle this by a mask for
> the handle for example? Any hints are very much appreciated!
Why not doing
tc filter add dev eth1 parent 1:0 protocol ip prio 4 handle 12 fw classid 2:22
Stef
--
stef.coene@xxxxxxxxx
"Using Linux as bandwidth manager"
http://www.docum.org/
#lartc @ irc.oftc.net
