> > > I can't make also work these two rules: > > > > > > > > > iptables -t mangle -A POSTROUTING -j CONNMARK --save-mark > > > > > > iptables -t mangle -A PREROUTING -j CONNMARK --restore-mark > > > > > > both fail with: > > > > > > iptables: Invalid argument > > > > Looks like your iptables (or your kernel?) doesn't support CONNMARK. > > What version of iptables do you have? > > kernel has the CONNMARK support built as module and loaded. > iptables is v1.3.3 At a guess 1.3.3 doesn't support CONNMARK. Try the latest version (1.3.7) - this is the version I'm using and it works fine. Regards, Andy _______________________________________________ LARTC mailing list LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
