: > You can place the fwmark on one machine, and then : > iptables block it on another if necessary. : : Can you do that? No. : AFAIK, the fwmark disappears when it leaves the machine. This is accurate. The fwmark is metadata and is only available on the box where the packet has been marked. -Martin -- Martin A. Brown --- SecurePipe, Inc. --- mabrown@xxxxxxxxxxxxxx _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
