RE: iptables CLASSIFY and MARK not working?

Linux Advanced Routing and Traffic Control

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

>From iptables libipt_classify.c:

static void
print_class(unsigned int priority, int numeric)
{
        printf("%x:%x ", TC_H_MAJ(priority)>>16, TC_H_MIN(priority));
}

/* Prints out the targinfo. */
static void
print(const struct ipt_ip *ip,
      const struct ipt_entry_target *target,
      int numeric)
{
        const struct ipt_classify_target_info *clinfo =
                (const struct ipt_classify_target_info *)target->data;
        printf("CLASSIFY set ");
        print_class(clinfo->priority, numeric);
}                                         

It does appear to be printing in hex. It also appears to be reading in
hex:

int string_to_priority(const char *s, unsigned int *p)
{
        unsigned int i, j;

        if (sscanf(s, "%x:%x", &i, &j) != 2)
                return 1;

        *p = TC_H_MAKE(i<<16, j);
        return 0;
}

So, let's see if that works.

 
Eliot Gable
Certified Wireless Network Administrator (CWNA)
Certified Wireless Security Professional (CWSP)
Cisco Certified Network Associate (CCNA)
CompTIA Security+ Certified
CompTIA Network+ Certified
Network and System Engineer
Great Lakes Internet, Inc.
112 North Howard
Croswell, MI 48422
(810) 679-3395
(877) 558-8324
 
Now offering Broadband Wireless Internet access in Croswell, Lexington,
Brown City, Yale, Worth Township, and Sandusky. Call for details.

-----Original Message-----
From: lartc-bounces@xxxxxxxxxxxxxxx
[mailto:lartc-bounces@xxxxxxxxxxxxxxx] On Behalf Of Luciano Ruete
Sent: Tuesday, May 30, 2006 4:13 PM
To: lartc@xxxxxxxxxxxxxxx
Subject: Re:  iptables CLASSIFY and MARK not working?

On Tuesday 30 May 2006 16:25, Eliot, Wireless and Server Administrator,
Great 
Lakes Internet wrote:
[snip]
> You'll notice that the iptables rules show matches for class 5:510,
> 5:511, and others; yet, the only class taking traffic here is 5:2.

just to exaust possibilities... 

i think that 5:2 is working cause 
0x2==2(decimal), but 
0x510!=510(decimal)
0x1fe==510(decimal)

in my experience iptables output is in HEX wile tc otput is in DEC
So give a try with 
tc class==510
iptables MARK==1fe 
and so on...

-- 
Luciano
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[Index of Archives]     [LARTC Home Page]     [Netfilter]     [Netfilter Development]     [Network Development]     [Bugtraq]     [GCC Help]     [Yosemite News]     [Linux Kernel]     [Fedora Users]
  Powered by Linux