You may be marking on the ingress interface. Locally generated packets do not go through that NIC and therefore do not get marked. You would have to mark them on the INPUT chain of your egress interface. Mike Fetherston > -----Original Message----- > From: FB [mailto:register@xxxxxxxxx] > Sent: Monday, July 12, 2004 12:24 PM > To: lartc@xxxxxxxxxxxxxxx > Subject: Re: Layer 7 netfilter not working > > heya! > first thanks to all for your help. shaping is working now (not 100% but > working). > This is why I didn't notice that it already worked: > My settings where all correct, BUT when I establish for example a FTP > connection from the router itself, it is somehow not shaped, however a > connection over the router (from a computer inside the lan) the > connection is shaped perfectly (with layer7). > > So my question: Why do the layer7 rules only work with connections over > the router but not from the router itself? > > -FB > _______________________________________________ > LARTC mailing list / LARTC@xxxxxxxxxxxxxxx > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
